Published: 02/05/2005 Updated: 05/02/2024

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

The intagg contrib module for PostgreSQL 8.0.0 and previous versions allows malicious users to cause a denial of service (crash) via crafted arrays.

Vulnerable Product	Search on Vulmon	Subscribe to Product
postgresql postgresql

The execution of custom PostgreSQL functions can be restricted with the EXECUTE privilege However, previous versions did not check this privilege when executing a function which was part of an aggregate As a result, any database user could circumvent the EXECUTE restriction of functions with a particular (but very common) parameter structure by c ...

Synopsis rh-postgresql security update Type/Severity Security Advisory: Important Topic Updated PostgreSQL packages to fix various security flaws are now availablefor Red Hat Enterprise Linux 3 Description PostgreSQL is an advanced Object-Relational database management system(DBMS)A flaw ...

Synopsis postgresql security update Type/Severity Security Advisory: Important Topic Updated postresql packages that correct various security issues are nowavailable for Red Hat Enterprise Linux 4This update has been rated as having important security impact by the RedHat Security Response Team D ...

NVD-CWE-Other http://archives.postgresql.org/pgsql-committers/2005-01/msg00401.php http://www.redhat.com/support/errata/RHSA-2005-138.html http://secunia.com/advisories/12948 http://www.novell.com/linux/security/advisories/2005_36_sudo.html http://www.securityfocus.com/bid/12417 http://www.mandriva.com/security/advisories?name=MDKSA-2005:040 http://marc.info/?l=bugtraq&m=110806034116082&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/19185 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10148 https://usn.ubuntu.com/79-1/https://nvd.nist.gov

CVE-2005-0246

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect