PostgreSQL 9.2.x prior to 9.2.4 and 9.1.x prior to 9.1.9 does not properly check REPLICATION privileges, which allows remote authenticated users to bypass intended backup restrictions by calling the (1) pg_start_backup or (2) pg_stop_backup functions.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
postgresql postgresql 9.2.2 |
||
postgresql postgresql 9.2.3 |
||
postgresql postgresql 9.2.1 |
||
postgresql postgresql 9.2 |
||
postgresql postgresql 9.1.3 |
||
postgresql postgresql 9.1.6 |
||
postgresql postgresql 9.1 |
||
postgresql postgresql 9.1.7 |
||
postgresql postgresql 9.1.8 |
||
postgresql postgresql 9.1.5 |
||
postgresql postgresql 9.1.4 |
||
postgresql postgresql 9.1.2 |
||
postgresql postgresql 9.1.1 |
||
canonical ubuntu linux 12.10 |
||
canonical ubuntu linux 12.04 |
||
canonical ubuntu linux 8.04 |
||
canonical ubuntu linux 11.10 |
||
canonical ubuntu linux 10.04 |