Multiple vulnerabilities in PostgreSQL

Описание

Multiple serious vulnerabilities have been found in PostgreSQL. Malicious users can exploit these vulnerabilities to cause denial of service, unauthorized tables access, bypass group politics restrictions and gain privileges. Below is a complete list of vulnerabilities

1. An improper value check can be exploited remotely via unknown vectors;
2. Integer overflows can be exploited remotely via unknown vectors;
3. Buffer overflows can be exploited remotely via unknown vectors;
4. A race condition can be exploited remotely via table manipulations;
5. Improper Admin option enforcement can be exploited remotely via command manipulations;
6. Vectors related to the procedural languages validator can be exploited remotely via function manipulation.

Первичный источник обнаружения

• PostgreSQL bulletin
  

Связанные продукты

• PostgreSQL

Список CVE

• CVE-2014-0062
  warning
• CVE-2014-0063
  high
• CVE-2014-0060
  warning
• CVE-2014-0061
  high
• CVE-2014-0066
  warning
• CVE-2014-0064
  high
• CVE-2014-0065
  high

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com