CVE Vulnerabilities

CVE-2004-0977

Published: Feb 09, 2005 | Modified: Oct 11, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
2.1 LOW
AV:L/AC:L/Au:N/C:N/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

The make_oidjoins_check script in PostgreSQL 7.4.5 and earlier allows local users to overwrite files via a symlink attack on temporary files.

Affected Software

Name Vendor Start Version End Version
Postgresql Postgresql 7.2.1 7.2.1
Postgresql Postgresql 7.4.3 7.4.3
Postgresql Postgresql 7.4.5 7.4.5
Red Hat Enterprise Linux 3 RedHat rh-postgresql-0:7.3.8-2 *
Postgresql Ubuntu dapper *
Postgresql Ubuntu edgy *
Postgresql-7.4 Ubuntu dapper *
Postgresql-7.4 Ubuntu edgy *
Postgresql-8.0 Ubuntu dapper *
Postgresql-8.1 Ubuntu dapper *
Postgresql-8.1 Ubuntu devel *
Postgresql-8.1 Ubuntu edgy *
Postgresql-8.1 Ubuntu feisty *
Postgresql-8.2 Ubuntu devel *
Postgresql-8.2 Ubuntu feisty *

References