Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2010-3433
Description:The PL/perl and PL/Tcl implementations in PostgreSQL 7.4 before 7.4.30, 8.0 before 8.0.26, 8.1 before 8.1.22, 8.2 before 8.2.18, 8.3 before 8.3.12, 8.4 before 8.4.5, and 9.0 before 9.0.1 do not properly protect script execution by a different SQL user identity within the same session, which allows remote authenticated users to gain privileges via crafted script code in a SECURITY DEFINER function, as demonstrated by (1) redefining standard functions or (2) redefining operators, a different vulnerability than CVE-2010-1168, CVE-2010-1169, CVE-2010-1170, and CVE-2010-1447.
Test IDs: 1.3.6.1.4.1.25623.1.0.68188   1.3.6.1.4.1.25623.1.0.68120   1.3.6.1.4.1.25623.1.0.68159   1.3.6.1.4.1.25623.1.0.68443   1.3.6.1.4.1.25623.1.0.68282   1.3.6.1.4.1.25623.1.0.68439   1.3.6.1.4.1.25623.1.0.68348   1.3.6.1.4.1.25623.1.0.68187   1.3.6.1.4.1.25623.1.0.68356   1.3.6.1.4.1.25623.1.0.68444   1.3.6.1.4.1.25623.1.0.68460   1.3.6.1.4.1.25623.1.0.69194   1.3.6.1.4.1.25623.1.0.100843   1.3.6.1.4.1.25623.1.0.122272   1.3.6.1.4.1.25623.1.0.122312   1.3.6.1.4.1.25623.1.0.880593   1.3.6.1.4.1.25623.1.0.880657  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2010-3433
BugTraq ID: 43747
http://www.securityfocus.com/bid/43747
Debian Security Information: DSA-2120 (Google Search)
http://www.debian.org/security/2010/dsa-2120
http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049591.html
http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049592.html
HPdes Security Advisory: HPSBMU02781
http://marc.info/?l=bugtraq&m=134124585221119&w=2
HPdes Security Advisory: SSRT100617
http://marc.info/?l=bugtraq&m=134124585221119&w=2
http://www.mandriva.com/security/advisories?name=MDVSA-2010:197
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7291
RedHat Security Advisories: RHSA-2010:0742
http://www.redhat.com/support/errata/RHSA-2010-0742.html
RedHat Security Advisories: RHSA-2010:0908
http://www.redhat.com/support/errata/RHSA-2010-0908.html
http://secunia.com/advisories/42325
SuSE Security Announcement: SUSE-SR:2010:019 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00006.html
SuSE Security Announcement: SUSE-SR:2010:020 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00001.html
http://www.ubuntu.com/usn/USN-1002-1
http://www.ubuntu.com/usn/USN-1002-2
http://www.vupen.com/english/advisories/2010/3051




© 1998-2024 E-Soft Inc. All rights reserved.