FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2005-0227

This CVE name corresponds to:

Entered Topic
2005-02-08 postgresql -- privilege escalation vulnerability

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

CVE-2005-0227 at cve.mitre.org

Details

Type Candidate
Name CVE-2005-0227
Phase Assigned(20050205)

Description

PostgreSQL (pgsql) 7.4.x, 7.2.x, and other versions allows local users to load arbitrary shared libraries and execute code via the LOAD extension.

References

Source Reference
MLIST [pgsql-bugs] 20050121 Privilege escalation via LOAD
MLIST [pgsql-announce] 20050201 PostgreSQL Security Release
DEBIAN DSA-668
GENTOO 200502-08
MANDRAKE MDKSA-2005:040
REDHAT RHSA-2005:138
REDHAT RHSA-2005:150
SUSE SUSE-SA:2005:036
TRUSTIX 2005-0003
BUGTRAQ 20050201 [USN-71-1] PostgreSQL vulnerability
BID 12411
OVAL oval:org.mitre.oval:def:10234
SECUNIA 12948

Copyright © 2005 The MITRE Corporation.

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.