Free and open-source vulnerability scanner

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

App screenshot

FreeBSD Ports: postgresql-server

Information

Severity

Severity

Medium

Family

Family

FreeBSD Local Security Checks

CVSSv2 Base

CVSSv2 Base

6.5

CVSSv2 Vector

CVSSv2 Vector

AV:N/AC:L/Au:S/C:P/I:P/A:P

Solution Type

Solution Type

Vendor Patch

Created

Created

15 years ago

Modified

Modified

7 years ago

Summary

The remote host is missing an update to the system as announced in the referenced advisory.

Insight

Insight

The following package is affected: postgresql-server CVE-2006-0553 PostgreSQL 8.1.0 through 8.1.2 allows authenticated database users to gain additional privileges via 'knowledge of the backend protocol' using a crafted SET ROLE to other database users, a different vulnerability than CVE-2006-0678.

Solution

Solution

Update your system with the appropriate patches or software upgrades. http://www.postgresql.org/docs/8.1/static/release.html#RELEASE-8-1-3 http://www.vuxml.org/freebsd/0b2b4b4d-a07c-11da-be0a-000c6ec775d9.html

Common Vulnerabilities and Exposures (CVE)