CVE Vulnerabilities

CVE-2004-0977

Published: Feb 09, 2005 | Modified: Feb 02, 2024
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
2.1 LOW
AV:L/AC:L/Au:N/C:N/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu
UNTRIAGED

The make_oidjoins_check script in PostgreSQL 7.4.5 and earlier allows local users to overwrite files via a symlink attack on temporary files.

Affected Software

Name Vendor Start Version End Version
Postgresql Postgresql 7.3.0 (including) 7.3.8 (excluding)
Postgresql Postgresql 7.4.0 (including) 7.4.6 (excluding)
Postgresql Ubuntu dapper *
Postgresql Ubuntu edgy *
Postgresql-7.4 Ubuntu dapper *
Postgresql-7.4 Ubuntu edgy *
Postgresql-8.0 Ubuntu dapper *
Postgresql-8.1 Ubuntu dapper *
Postgresql-8.1 Ubuntu devel *
Postgresql-8.1 Ubuntu edgy *
Postgresql-8.1 Ubuntu feisty *
Postgresql-8.2 Ubuntu devel *
Postgresql-8.2 Ubuntu feisty *
Red Hat Enterprise Linux 3 RedHat rh-postgresql-0:7.3.8-2 *

References