Lucene search
K

5 matches found

seebug.org
seebug.org
added 2013/04/08 12:0 a.m.2063 views

PostgreSQL 临时文件创建漏洞(CVE-2013-1902)

BUGTRAQ ID: 58877 CVECAN ID: CVE-2013-1902 PostgreSQL是一款高级对象-关系型数据库管理系统,支持扩展的SQL标准子集。 PostgreSQL 9.2.4, 9.1.9, 9.0.13之前版本存用可预测的文件名生成了不安全的临时文件,本地攻击者可以进行符号链接攻击。 0 Debian Linux 6.0 x PostgreSQL 9.x 厂商补丁: PostgreSQL ---------- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://www.postgresql.org...

10CVSS8.9AI score0.02206EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2013/04/05 12:0 a.m.34 views

PostgreSQL < 8.4.17 Multiple Vulnerabilities

Binary data 6746.prm...

10CVSS7.8AI score0.04511EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2013/04/05 12:0 a.m.23 views

PostgreSQL < 9.0.13 Multiple Vulnerabilities

Binary data 6745.prm...

10CVSS7.8AI score0.54312EPSS
Exploits4References6
NVD
NVD
added 2013/04/04 5:55 p.m.26 views

CVE-2013-1902

PostgreSQL, 9.2.x before 9.2.4, 9.1.x before 9.1.9, 9.0.x before 9.0.13, 8.4.x before 8.4.17, and 8.3.x before 8.3.23 generates insecure temporary files with predictable filenames, which has unspecified impact and attack vectors related to "graphical installers for Linux and Mac OS X."...

10CVSS6.4AI score0.02206EPSS
Exploits1References3
CVE
CVE
added 2013/04/04 5:0 p.m.847 views

CVE-2013-1902

CVE-2013-1902 concerns PostgreSQL versions 8.3.x before 8.3.23, 8.4.x before 8.4.17, 9.0.x before 9.0.13, 9.1.x before 9.1.9, and 9.2.x before 9.2.4, which generate insecure temporary files with predictable filenames. The description notes an unspecified impact and attack vectors related to graph...

10CVSS9AI score0.02206EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder