Databases : PostgreSQL Multiple Vulnerabilities

Búsqueda de Vulnerabilidad		Buscar 219043 Descripciones CVE y 99761 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.807518

Categoría: Databases

Título: PostgreSQL Multiple Vulnerabilities - Mar15 (Linux)

Resumen: This host is running PostgreSQL and is; prone to multiple vulnerabilities.

Descripción: Summary:
This host is running PostgreSQL and is
prone to multiple vulnerabilities.

Vulnerability Insight:
Multiple flaws are due to the PostgreSQL
incorrectly handle certain regular expressions and certain configuration
settings (GUCS) for users of PL/Java.

Vulnerability Impact:
Successful exploitation will allow a
remote attacker to escalate privileges and to cause denial of service
conditions.

Affected Software/OS:
PostgreSQL version before 9.1.20, 9.2.x
before 9.2.15, 9.3.x before 9.3.11, 9.4.x before 9.4.6, and 9.5.x before
9.5.1.

Solution:
Upgrade to version 9.1.20 or 9.2.15 or
9.3.11 or 9.4.6 or 9.5.1 or later.

CVSS Score:
9.0

CVSS Vector:
AV:N/AC:L/Au:S/C:C/I:C/A:C

Referencia Cruzada: BugTraq ID: 83184
Common Vulnerability Exposure (CVE) ID: CVE-2016-0773
http://www.securityfocus.com/bid/83184
Debian Security Information: DSA-3475 (Google Search)
http://www.debian.org/security/2016/dsa-3475
Debian Security Information: DSA-3476 (Google Search)
http://www.debian.org/security/2016/dsa-3476
http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177878.html
http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177820.html
https://security.gentoo.org/glsa/201701-33
RedHat Security Advisories: RHSA-2016:1060
http://rhn.redhat.com/errata/RHSA-2016-1060.html
http://www.securitytracker.com/id/1035005
SuSE Security Announcement: SUSE-SU-2016:0539 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00052.html
SuSE Security Announcement: SUSE-SU-2016:0555 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00054.html
SuSE Security Announcement: SUSE-SU-2016:0677 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00016.html
SuSE Security Announcement: openSUSE-SU-2016:0531 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00049.html
SuSE Security Announcement: openSUSE-SU-2016:0578 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00056.html
http://www.ubuntu.com/usn/USN-2894-1
Common Vulnerability Exposure (CVE) ID: CVE-2016-0766

Copyright Copyright (C) 2016 Greenbone Networks GmbH

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.807518
Categoría:	Databases
Título:	PostgreSQL Multiple Vulnerabilities - Mar15 (Linux)
Resumen:	This host is running PostgreSQL and is; prone to multiple vulnerabilities.
Descripción:	Summary: This host is running PostgreSQL and is prone to multiple vulnerabilities. Vulnerability Insight: Multiple flaws are due to the PostgreSQL incorrectly handle certain regular expressions and certain configuration settings (GUCS) for users of PL/Java. Vulnerability Impact: Successful exploitation will allow a remote attacker to escalate privileges and to cause denial of service conditions. Affected Software/OS: PostgreSQL version before 9.1.20, 9.2.x before 9.2.15, 9.3.x before 9.3.11, 9.4.x before 9.4.6, and 9.5.x before 9.5.1. Solution: Upgrade to version 9.1.20 or 9.2.15 or 9.3.11 or 9.4.6 or 9.5.1 or later. CVSS Score: 9.0 CVSS Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C
Referencia Cruzada:	BugTraq ID: 83184 Common Vulnerability Exposure (CVE) ID: CVE-2016-0773 http://www.securityfocus.com/bid/83184 Debian Security Information: DSA-3475 (Google Search) http://www.debian.org/security/2016/dsa-3475 Debian Security Information: DSA-3476 (Google Search) http://www.debian.org/security/2016/dsa-3476 http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177878.html http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177820.html https://security.gentoo.org/glsa/201701-33 RedHat Security Advisories: RHSA-2016:1060 http://rhn.redhat.com/errata/RHSA-2016-1060.html http://www.securitytracker.com/id/1035005 SuSE Security Announcement: SUSE-SU-2016:0539 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00052.html SuSE Security Announcement: SUSE-SU-2016:0555 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00054.html SuSE Security Announcement: SUSE-SU-2016:0677 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00016.html SuSE Security Announcement: openSUSE-SU-2016:0531 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00049.html SuSE Security Announcement: openSUSE-SU-2016:0578 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00056.html http://www.ubuntu.com/usn/USN-2894-1 Common Vulnerability Exposure (CVE) ID: CVE-2016-0766
Copyright	Copyright (C) 2016 Greenbone Networks GmbH