Back to search
CVE-2010-1169
Published: May 19, 2010
Modified: Aug 7, 2024
PUBLISHED
Description
PostgreSQL 7.4 before 7.4.29, 8.0 before 8.0.25, 8.1 before 8.1.21, 8.2 before 8.2.17, 8.3 before 8.3.11, 8.4 before 8.4.4, and 9.0 Beta before 9.0 Beta 2 does not properly restrict PL/perl procedures, which allows remote authenticated users, with database-creation privileges, to execute arbitrary Perl code via a crafted script, related to the Safe module (aka Safe.pm) for Perl. NOTE: some sources report that this issue is the same as CVE-2010-1447.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
http://www.postgresql.org/docs/current/static/release-8-1-21.html
x_refsource_CONFIRM
FEDORA-2010-8715
vendor-advisory
x_refsource_FEDORA
http://www.postgresql.org/about/news.1203
x_refsource_CONFIRM
RHSA-2010:0427
vendor-advisory
x_refsource_REDHAT
RHSA-2010:0428
vendor-advisory
x_refsource_REDHAT
HPSBMU02781
vendor-advisory
x_refsource_HP
postgresql-safe-code-execution(58693)
vdb-entry
x_refsource_XF
DSA-2051
vendor-advisory
x_refsource_DEBIAN
39898
third-party-advisory
x_refsource_SECUNIA
http://www.postgresql.org/docs/current/static/release-7-4-29.html
x_refsource_CONFIRM
39820
third-party-advisory
x_refsource_SECUNIA
ADV-2010-1198
vdb-entry
x_refsource_VUPEN
http://www.postgresql.org/docs/current/static/release-8-0-25.html
x_refsource_CONFIRM
ADV-2010-1167
vdb-entry
x_refsource_VUPEN
ADV-2010-1221
vdb-entry
x_refsource_VUPEN
39845
third-party-advisory
x_refsource_SECUNIA
40215
vdb-entry
x_refsource_BID
http://www.postgresql.org/docs/current/static/release-8-3-11.html
x_refsource_CONFIRM
ADV-2010-1207
vdb-entry
x_refsource_VUPEN
http://www.postgresql.org/docs/current/static/release-8-2-17.html
x_refsource_CONFIRM
RHSA-2010:0430
vendor-advisory
x_refsource_REDHAT
http://www.postgresql.org/support/security
x_refsource_CONFIRM
FEDORA-2010-8696
vendor-advisory
x_refsource_FEDORA
FEDORA-2010-8723
vendor-advisory
x_refsource_FEDORA
http://www.postgresql.org/docs/current/static/release-8-4-4.html
x_refsource_CONFIRM
SUSE-SR:2010:014
vendor-advisory
x_refsource_SUSE
ADV-2010-1182
vdb-entry
x_refsource_VUPEN
https://bugzilla.redhat.com/show_bug.cgi?id=582615
x_refsource_CONFIRM
39815
third-party-advisory
x_refsource_SECUNIA
oval:org.mitre.oval:def:10645
vdb-entry
signature
x_refsource_OVAL
RHSA-2010:0429
vendor-advisory
x_refsource_REDHAT
MDVSA-2010:103
vendor-advisory
x_refsource_MANDRIVA
1023988
vdb-entry
x_refsource_SECTRACK
39939
third-party-advisory
x_refsource_SECUNIA
SSRT100617
vendor-advisory
x_refsource_HP
64755
vdb-entry
x_refsource_OSVDB
https://bugzilla.redhat.com/show_bug.cgi?id=588269
x_refsource_CONFIRM
ADV-2010-1197
vdb-entry
x_refsource_VUPEN
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now