Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2007-0555

PostgreSQL 7.3 before 7.3.13, 7.4 before 7.4.16, 8.0 before 8.0.11, 8.1 before 8.1.7, and 8.2 before 8.2.2 allows attackers to disable certain checks for the data types of SQL function arguments, which allows remote authenticated users to cause a denial of service (server crash) and possibly access database content.

Published

2007-02-06T01:28:00.000

Last Modified

2025-04-09T00:30:58.490

Status

Deferred

Source

[email protected]

Severity

CVSSv2: 8.5 (HIGH)

CVSSv2 Vector

AV:N/AC:L/Au:S/C:C/I:N/A:C

Access Vector: NETWORK
Access Complexity: LOW
Authentication: SINGLE
Confidentiality Impact: COMPLETE
Integrity Impact: NONE
Availability Impact: COMPLETE

Exploitability Score

8.0

Impact Score

9.2

Weaknesses

Type: Primary
NVD-CWE-Other

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	postgresql	postgresql	< 7.3.18	Yes
Application	postgresql	postgresql	< 7.4.16	Yes
Application	postgresql	postgresql	< 8.0.11	Yes
Application	postgresql	postgresql	< 8.1.7	Yes
Application	postgresql	postgresql	< 8.2.2	Yes

References

ftp://patches.sgi.com/support/free/security/advisories/20070201-01-P.asc Third Party Advisory ([email protected])
http://fedoranews.org/cms/node/2554 Third Party Advisory ([email protected])
http://lists.rpath.com/pipermail/security-announce/2007-February/000141.html Broken Link ([email protected])
http://osvdb.org/33087 Broken Link ([email protected])
http://secunia.com/advisories/24028 Broken Link ([email protected])
http://secunia.com/advisories/24033 Broken Link ([email protected])
http://secunia.com/advisories/24042 Broken Link ([email protected])
http://secunia.com/advisories/24050 Broken Link ([email protected])
http://secunia.com/advisories/24057 Broken Link ([email protected])
http://secunia.com/advisories/24094 Broken Link ([email protected])
http://secunia.com/advisories/24151 Broken Link ([email protected])
http://secunia.com/advisories/24158 Broken Link ([email protected])
http://secunia.com/advisories/24284 Broken Link ([email protected])
http://secunia.com/advisories/24315 Broken Link ([email protected])
http://secunia.com/advisories/24513 Broken Link ([email protected])
http://secunia.com/advisories/24577 Broken Link ([email protected])
http://secunia.com/advisories/25220 Broken Link ([email protected])
http://security.gentoo.org/glsa/glsa-200703-15.xml Third Party Advisory ([email protected])
http://securitytracker.com/id?1017597 Third Party Advisory, VDB Entry ([email protected])
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102825-1 Broken Link ([email protected])
http://support.avaya.com/elmodocs2/security/ASA-2007-117.htm Third Party Advisory ([email protected])
http://www.debian.org/security/2007/dsa-1261 Third Party Advisory ([email protected])
http://www.mandriva.com/security/advisories?name=MDKSA-2007:037 Broken Link ([email protected])
http://www.novell.com/linux/security/advisories/2007_10_sr.html Third Party Advisory ([email protected])
http://www.postgresql.org/support/security Vendor Advisory ([email protected])
http://www.redhat.com/support/errata/RHSA-2007-0064.html Third Party Advisory ([email protected])
http://www.redhat.com/support/errata/RHSA-2007-0067.html Third Party Advisory ([email protected])
http://www.redhat.com/support/errata/RHSA-2007-0068.html Third Party Advisory ([email protected])
http://www.securityfocus.com/archive/1/459280/100/0/threaded Third Party Advisory, VDB Entry ([email protected])
http://www.securityfocus.com/archive/1/459448/100/0/threaded Third Party Advisory, VDB Entry ([email protected])
http://www.securityfocus.com/bid/22387 Third Party Advisory, VDB Entry ([email protected])
http://www.trustix.org/errata/2007/0007 Broken Link ([email protected])
http://www.ubuntu.com/usn/usn-417-2 Third Party Advisory ([email protected])
http://www.vupen.com/english/advisories/2007/0478 Third Party Advisory ([email protected])
http://www.vupen.com/english/advisories/2007/0774 Third Party Advisory ([email protected])
https://exchange.xforce.ibmcloud.com/vulnerabilities/32195 Third Party Advisory, VDB Entry ([email protected])
https://issues.rpath.com/browse/RPL-1025 Broken Link ([email protected])
https://issues.rpath.com/browse/RPL-830 Broken Link ([email protected])
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9739 Third Party Advisory ([email protected])
https://usn.ubuntu.com/417-1/ Third Party Advisory ([email protected])
ftp://patches.sgi.com/support/free/security/advisories/20070201-01-P.asc Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://fedoranews.org/cms/node/2554 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://lists.rpath.com/pipermail/security-announce/2007-February/000141.html Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://osvdb.org/33087 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/24028 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/24033 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/24042 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/24050 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/24057 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/24094 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/24151 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/24158 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/24284 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/24315 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/24513 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/24577 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/25220 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://security.gentoo.org/glsa/glsa-200703-15.xml Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://securitytracker.com/id?1017597 Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102825-1 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://support.avaya.com/elmodocs2/security/ASA-2007-117.htm Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.debian.org/security/2007/dsa-1261 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.mandriva.com/security/advisories?name=MDKSA-2007:037 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://www.novell.com/linux/security/advisories/2007_10_sr.html Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.postgresql.org/support/security Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.redhat.com/support/errata/RHSA-2007-0064.html Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.redhat.com/support/errata/RHSA-2007-0067.html Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.redhat.com/support/errata/RHSA-2007-0068.html Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/archive/1/459280/100/0/threaded Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/archive/1/459448/100/0/threaded Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/22387 Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
http://www.trustix.org/errata/2007/0007 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://www.ubuntu.com/usn/usn-417-2 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.vupen.com/english/advisories/2007/0478 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.vupen.com/english/advisories/2007/0774 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/32195 Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
https://issues.rpath.com/browse/RPL-1025 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
https://issues.rpath.com/browse/RPL-830 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9739 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://usn.ubuntu.com/417-1/ Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)