Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
2.1
CVSSv2

CVE-2004-0977

Published: 09/02/2005 Updated: 02/02/2024
CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9
VMScore: 187
Vector: AV:L/AC:L/Au:N/C:N/I:P/A:N
Subscribe to Postgresql

Vulnerability Summary

The make_oidjoins_check script in PostgreSQL 7.4.5 and previous versions allows local users to overwrite files via a symlink attack on temporary files.

Vulnerable Product Search on Vulmon Subscribe to Product

postgresql postgresql

trustix secure linux 2.0

mandrakesoft mandrake linux corporate server 2.1

redhat enterprise linux desktop 3.0

redhat enterprise linux 3.0

mandrakesoft mandrake linux 9.2

mandrakesoft mandrake linux 10.1

mandrakesoft mandrake linux 10.0

trustix secure linux 2.1

Vendor Advisories

Red Hat: rh-postgresql security update
Synopsis rh-postgresql security update Type/Severity Security Advisory: Low Topic Updated rh-postgresql packages that fix various bugs are now available Description PostgreSQL is an advanced Object-Relational database management system(DBMS) that supports almost all SQL constructs (includi ...
Debian Security Advisories: DSA-577-1 postgresql -- insecure temporary file
Trustix Security Engineers identified insecure temporary file creation in a script included in the postgresql suite, an object-relational SQL database This could lead an attacker to trick a user to overwrite arbitrary files he has write access to For the stable distribution (woody) this problem has been fixed in version 721-2woody6 For the uns ...

References

NVD-CWE-Otherhttp://www.securityfocus.com/bid/11295http://www.debian.org/security/2004/dsa-577http://security.gentoo.org/glsa/glsa-200410-16.xmlhttp://www.redhat.com/support/errata/RHSA-2004-489.htmlhttp://www.trustix.org/errata/2004/0050http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=136300http://www.mandriva.com/security/advisories?name=MDKSA-2004:149http://marc.info/?l=bugtraq&m=109910073808903&w=2https://www.ubuntu.com/usn/usn-6-1/https://exchange.xforce.ibmcloud.com/vulnerabilities/17583https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11360https://access.redhat.com/errata/RHSA-2004:489https://www.debian.org/security/./dsa-577https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
race conditionCVE-2024-4249CVE-2024-4244CVE-2023-20198TCPCVE-2022-48648CVE-2022-48636CVE-2024-21345SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook