Test Kennung:	1.3.6.1.4.1.25623.1.0.804710
Kategorie:	Databases
Titel:	PostgreSQL Multiple Security Bypass Vulnerability July14 (Windows)
Zusammenfassung:	This host is installed with PostgreSQL and is prone to multiple security bypass; vulnerabilities.
Beschreibung:	Summary: This host is installed with PostgreSQL and is prone to multiple security bypass vulnerabilities. Vulnerability Insight: Multiple flaws are due to: - An error when handling roles can be exploited to revoke access from other role members. - Multiple errors when handling calls to PL validator functions. - Some errors when handling name lookups. - Some boundary errors when handling wide datetime input/output. Vulnerability Impact: Successful exploitation may allow an attacker to bypass certain security restrictions, cause a DoS (Denial of Service), and potentially compromise a vulnerable system. Affected Software/OS: PostgreSQL version before 8.4.20, 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 Solution: Upgrade to version 9.3.3, 9.2.7, 9.1.12, 9.0.16 or 8.4.20, or later. CVSS Score: 6.5 CVSS Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P
Querverweis:	BugTraq ID: 65723 BugTraq ID: 65724 BugTraq ID: 65727 BugTraq ID: 65719 BugTraq ID: 65725 BugTraq ID: 65731 BugTraq ID: 65728 Common Vulnerability Exposure (CVE) ID: CVE-2014-0060 http://archives.neohapsis.com/archives/bugtraq/2014-10/0103.html Debian Security Information: DSA-2864 (Google Search) http://www.debian.org/security/2014/dsa-2864 Debian Security Information: DSA-2865 (Google Search) http://www.debian.org/security/2014/dsa-2865 RedHat Security Advisories: RHSA-2014:0211 http://rhn.redhat.com/errata/RHSA-2014-0211.html RedHat Security Advisories: RHSA-2014:0221 http://rhn.redhat.com/errata/RHSA-2014-0221.html RedHat Security Advisories: RHSA-2014:0249 http://rhn.redhat.com/errata/RHSA-2014-0249.html RedHat Security Advisories: RHSA-2014:0469 http://rhn.redhat.com/errata/RHSA-2014-0469.html http://secunia.com/advisories/61307 SuSE Security Announcement: openSUSE-SU-2014:0345 (Google Search) http://lists.opensuse.org/opensuse-updates/2014-03/msg00018.html SuSE Security Announcement: openSUSE-SU-2014:0368 (Google Search) http://lists.opensuse.org/opensuse-updates/2014-03/msg00038.html http://www.ubuntu.com/usn/USN-2120-1 Common Vulnerability Exposure (CVE) ID: CVE-2014-0061 Common Vulnerability Exposure (CVE) ID: CVE-2014-0062 http://www.securityfocus.com/bid/65727 Common Vulnerability Exposure (CVE) ID: CVE-2014-0063 http://www.securityfocus.com/bid/65719 Common Vulnerability Exposure (CVE) ID: CVE-2014-0064 http://www.securityfocus.com/bid/65725 Common Vulnerability Exposure (CVE) ID: CVE-2014-0065 http://www.securityfocus.com/bid/65731 Common Vulnerability Exposure (CVE) ID: CVE-2014-0066
Copyright	Copyright (C) 2014 Greenbone Networks GmbH

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.