SecurityTracker.com
Keep Track of the Latest Vulnerabilities
with SecurityTracker!
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 
Sign Up
Sign Up for Your FREE Weekly SecurityTracker E-mail Alert Summary
Instant Alerts
Buy our Premium Vulnerability Notification Service to receive customized, instant alerts
Affiliates
Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!
Partners
Become a Partner and License Our Database or Notification Service
Report a Bug
Report a vulnerability that you have found to SecurityTracker
bugs
@
securitytracker.com





Category:   Application (E-mail Server)  >   Internet Express Vendors:   HP (Compaq)
(HP Issues Fix for Internet Express) PostgreSQL Bugs Let Remote Authenticated Users Deny Service and Obtain Elevated Privileges
SecurityTracker Alert ID:  1019747
SecurityTracker URL:  http://securitytracker.com/id/1019747
CVE Reference:   CVE-2007-3278, CVE-2007-4769, CVE-2007-4772, CVE-2007-6067, CVE-2007-6600, CVE-2007-6601   (Links to External Site)
Date:  Apr 1 2008
Impact:   Denial of service via network, Execution of arbitrary code via network, User access via network
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): 6.6, 6.7
Description:   Several vulnerabilities were reported in PostgreSQL. A remote authenticated user can gain elevated privileges on the target database. A remote authenticated user can cause denial of service conditions. HP Internet Express is affected.

A remote authenticated user can invoke certain index functions to gain elevated privileges [CVE-2007-6600]. The VACUUM and ANALYZE functions can be executed with superuser privileges. The SET ROLE and SET SESSION AUTHORIZATION functions can be accessed within index functions.

A remote authenticated user can submit SQL queries containing specially crafted regular expressions to cause the database to enter an infinite loop, consume excessive memory, or crash [CVE-2007-4772, CVE-2007-6067, CVE-2007-4769].

A remote authenticated user can invoke DBLink functions (combined with local trust or ident authentication) to gain superuser privileges [CVE-2007-3278, CVE-2007-6601].
Impact:   A remote authenticated user can gain elevated privileges on the target database.

A remote authenticated user can cause denial of service conditions on the target system.
Solution:   HP has issued an ERP kit for HP Internet Express, which is affected by these vulnerabilities.

HP Internet Express for Tru64 UNIX v 6.6 or v 6.7
PREREQUISITE: HP Tru64 UNIX v 5.1B-4 PK6 (BL27) or v 5.1B-3 PK5 (BL26)
Name: POSTGRESQL_8.2.6-ES-20080320.tar.gz
Location: http://www.itrc.hp.com/service/patch/patchDetail.do?patchid=POSTGRESQL_8.2.6-ES-20080320

The HP advisory is available at:

http://www11.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c01420154
Cause:   Access control error, State error
Underlying OS:   UNIX (Tru64)

Message History:   This archive entry is a follow-up to the message listed below.
Jan 7 2008 PostgreSQL Bugs Let Remote Authenticated Users Deny Service and Obtain Elevated Privileges


 Source Message Contents
Date:  Tue, 1 Apr 2008 17:13:58 -0500
Subject:  HPSBTU02325 SSRT080006 rev.1 - HP Internet Express for Tru64 UNIX running PostgreSQL, Arbitrary Code Execution, Privilege Elevation, or Denial of



http://www11.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c01420154

CVE-2007-3278, CVE-2007-4769, CVE-2007-4772, CVE-2007-6067, CVE-2007-6600, CVE-2007-6601


Go to the Top of This SecurityTracker Archive Page



Home   |    View Topics   |    Search   |    Contact Us

Copyright 2012, SecurityGlobal.net LLC