WEB APPLICATION VULNERABILITIES Standard & Premium

PostgreSQL Improper Authentication Vulnerability (CVE-2007-6601)

Description

The DBLink module in PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, 7.4 before 7.4.19, and 7.3 before 7.3.21, when local trust or ident authentication is used, allows remote attackers to gain privileges via unspecified vectors. NOTE: this issue exists because of an incomplete fix for CVE-2007-3278.

Remediation

References

Related Vulnerabilities

WordPress Plugin miniOrange's Google Authenticator-WordPress Two Factor Authentication (2FA, MFA, OTP SMS and Email)-Passwordless login Cross-Site Scripting (5.4.39)

WordPress Plugin MobileView by ColorLabs & Company Cross-Site Scripting (1.0.7)

WordPress Plugin Contact Bank-Contact Form Builder for WordPress Cross-Site Scripting (2.1.23)

TYPO3 Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2005-4875)

WordPress Plugin Ultimate Responsive Image Slider Unspecified Vulnerability (3.3.2)

Severity

High

Classification

CVE-2007-6601 CWE-287

Tags

Missing Update Known Vulnerabilities