Lucene search

K

PRIOn knowledge basePRION:CVE-2010-1447

HistoryMay 19, 2010 - 6:30 p.m.

Design/Logic Flaw

2010-05-1918:30:00

PRIOn knowledge base

www.prio-n.com

17

7.2 High

AI Score

Confidence

Low

8.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:S/C:C/I:C/A:C

0.006 Low

EPSS

Percentile

77.9%

The Safe (aka Safe.pm) module 2.26, and certain earlier versions, for Perl, as used in PostgreSQL 7.4 before 7.4.29, 8.0 before 8.0.25, 8.1 before 8.1.21, 8.2 before 8.2.17, 8.3 before 8.3.11, 8.4 before 8.4.4, and 9.0 Beta before 9.0 Beta 2, allows context-dependent attackers to bypass intended (1) Safe::reval and (2) Safe::rdo access restrictions, and inject and execute arbitrary code, via vectors involving subroutine references and delayed execution.

CPENameOperatorVersion
postgresqleq7.4.16
postgresqleq7.4.24
postgresqleq7.4.22
postgresqleq7.4.21
postgresqleq7.4.19
postgresqleq7.4.15
postgresqleq7.4.1
postgresqleq7.4.14
postgresqleq7.4.26
postgresqleq7.4.6

Rows per page:

1-10 of 1101

References

kb.juniper.net/InfoCenter/index?page=content&id=JSA10705

osvdb.org/64756

secunia.com/advisories/39845

secunia.com/advisories/40049

secunia.com/advisories/40052

security-tracker.debian.org/tracker/CVE-2010-1447

www.debian.org/security/2011/dsa-2267

www.mandriva.com/security/advisories?name=MDVSA-2010:115

www.mandriva.com/security/advisories?name=MDVSA-2010:116

www.openwall.com/lists/oss-security/2010/05/20/5

www.postgresql.org/about/news.1203

www.redhat.com/support/errata/RHSA-2010-0457.html

www.redhat.com/support/errata/RHSA-2010-0458.html

www.securityfocus.com/bid/40305

www.securitytracker.com/id?1023988

www.vupen.com/english/advisories/2010/1167

bugs.launchpad.net/bugs/cve/2010-1447

bugzilla.redhat.com/show_bug.cgi?id=588269

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11530

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7320

7.2 High

AI Score

Confidence

Low

8.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:S/C:C/I:C/A:C

0.006 Low

EPSS

Percentile

77.9%

Related for PRION:CVE-2010-1447

debian3 openvas31 nessus27 veracode1 cve3 debiancve1 securityvulns4 oraclelinux2 redhat2 prion2 fedora3 ubuntucve4 seebug2 threatpost1 centos1 osv1 ubuntu1 vmware2 gentoo1