Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.9
CVSSv2

CVE-2012-3488

Published: 03/10/2012 Updated: 08/12/2016
CVSS v2 Base Score: 4.9 | Impact Score: 4.9 | Exploitability Score: 6.8
VMScore: 438
Vector: AV:N/AC:M/Au:S/C:P/I:P/A:N
Subscribe to Postgresql

Vulnerability Summary

The libxslt support in contrib/xml2 in PostgreSQL 8.3 prior to 8.3.20, 8.4 prior to 8.4.13, 9.0 prior to 9.0.9, and 9.1 prior to 9.1.5 does not properly restrict access to files and URLs, which allows remote authenticated users to modify data, obtain sensitive information, or trigger outbound traffic to arbitrary external hosts by leveraging (1) stylesheet commands that are permitted by the libxslt security options or (2) an xslt_process feature, related to an XML External Entity (aka XXE) issue.

Vulnerable Product Search on Vulmon Subscribe to Product

postgresql postgresql 9.1.2

postgresql postgresql 9.1.3

postgresql postgresql 9.1.4

postgresql postgresql 9.1

postgresql postgresql 9.1.1

postgresql postgresql 8.4.12

postgresql postgresql 8.4.6

postgresql postgresql 8.4.10

postgresql postgresql 8.4.3

postgresql postgresql 8.4.4

postgresql postgresql 8.4.7

postgresql postgresql 8.4.5

postgresql postgresql 8.4.1

postgresql postgresql 8.4.11

postgresql postgresql 8.4

postgresql postgresql 8.4.2

postgresql postgresql 8.4.8

postgresql postgresql 8.4.9

postgresql postgresql 8.3.18

postgresql postgresql 8.3.13

postgresql postgresql 8.3.2

postgresql postgresql 8.3.1

postgresql postgresql 8.3.15

postgresql postgresql 8.3.16

postgresql postgresql 8.3.10

postgresql postgresql 8.3.9

postgresql postgresql 8.3.12

postgresql postgresql 8.3

postgresql postgresql 8.3.19

postgresql postgresql 8.3.11

postgresql postgresql 8.3.14

postgresql postgresql 8.3.6

postgresql postgresql 8.3.4

postgresql postgresql 8.3.3

postgresql postgresql 8.3.17

postgresql postgresql 8.3.8

postgresql postgresql 8.3.7

postgresql postgresql 8.3.5

postgresql postgresql 9.0.2

postgresql postgresql 9.0.3

postgresql postgresql 9.0.6

postgresql postgresql 9.0.7

postgresql postgresql 9.0.4

postgresql postgresql 9.0.5

postgresql postgresql 9.0

postgresql postgresql 9.0.1

postgresql postgresql 9.0.8

Vendor Advisories

Ubuntu Security Notice: postgresql-8.3, postgresql-8.4, postgresql-9.1 vulnerabilities
PostgreSQL could allow unintended access to files over the network when using the XML2 extension ...
Red Hat: Moderate: postgresql security update
Synopsis Moderate: postgresql security update Type/Severity Security Advisory: Moderate Topic Updated postgresql packages that fix one security issue are now availablefor Red Hat Enterprise Linux 5The Red Hat Security Response Team has rated this update as having moderatesecurity impact A Common Vulnerabi ...
Red Hat: Moderate: postgresql and postgresql84 security update
Synopsis Moderate: postgresql and postgresql84 security update Type/Severity Security Advisory: Moderate Topic Updated postgresql84 and postgresql packages that fix two security issuesare now available for Red Hat Enterprise Linux 5 and 6 respectivelyThe Red Hat Security Response Team has rated this update ...
Debian Security Advisories: DSA-2534-1 postgresql-8.4 -- several vulnerabilities
Two vulnerabilities related to XML processing were discovered in PostgreSQL, an SQL database CVE-2012-3488 contrib/xml2's xslt_process() can be used to read and write external files and URLs CVE-2012-3489 xml_parse() fetches external files or URLs to resolve DTD and entity references in XML values This update removes the problematic functi ...
Amazon Linux AMI: ALAS-2012-121
The libxslt support in contrib/xml2 in PostgreSQL 83 before 8320, 84 before 8413, 90 before 909, and 91 before 915 does not properly restrict access to files and URLs, which allows remote authenticated users to modify data, obtain sensitive information, or trigger outbound traffic to arbitrary external hosts by leveraging (1) stylesheet ...
Amazon Linux AMI: ALAS-2012-129
It was found that the optional PostgreSQL xml2 contrib module allowed local files and remote URLs to be read and written to with the privileges of the database server when parsing Extensible Stylesheet Language Transformations (XSLT) An unprivileged database user could use this flaw to read and write to local files (such as the database's configur ...

References

CWE-264http://www.postgresql.org/support/security/http://www.postgresql.org/about/news/1407/https://bugzilla.redhat.com/show_bug.cgi?id=849172http://www.postgresql.org/docs/9.0/static/release-9-0-9.htmlhttp://www.postgresql.org/docs/9.1/static/release-9-1-5.htmlhttp://www.postgresql.org/docs/8.4/static/release-8-4-13.htmlhttp://www.postgresql.org/docs/8.3/static/release-8-3-20.htmlhttp://lists.opensuse.org/opensuse-updates/2012-10/msg00024.htmlhttp://rhn.redhat.com/errata/RHSA-2012-1263.htmlhttp://lists.opensuse.org/opensuse-updates/2012-10/msg00013.htmlhttp://lists.opensuse.org/opensuse-updates/2012-09/msg00102.htmlhttp://www.debian.org/security/2012/dsa-2534http://rhn.redhat.com/errata/RHSA-2012-1264.htmlhttp://www.securityfocus.com/bid/55072http://secunia.com/advisories/50636http://lists.apple.com/archives/security-announce/2013/Mar/msg00002.htmlhttp://www.ubuntu.com/usn/USN-1542-1http://secunia.com/advisories/50635http://www.mandriva.com/security/advisories?name=MDVSA-2012:139http://secunia.com/advisories/50718https://blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_in_postgresql2http://secunia.com/advisories/50946http://secunia.com/advisories/50859http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705https://usn.ubuntu.com/1542-1/https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-2907hardcodedinjectCVE-2024-20359CVE-2024-2467CVE-2024-4077CVE-2024-22391cameraCVE-2024-20353
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook