Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:60719
HistoryApr 08, 2013 - 12:00 a.m.

PostgreSQL 安全绕过漏洞(CVE-2013-1901)

2013-04-0800:00:00
Root
www.seebug.org
28

0.003 Low

EPSS

Percentile

64.1%

JSON

BUGTRAQ ID: 58878
CVE(CAN) ID: CVE-2013-1901

PostgreSQL是一款高级对象-关系型数据库管理系统,支持扩展的SQL标准子集。

PostgreSQL 9.2.x、9.1.x没有正确检查REPLICATION权限,远程攻击者通过调用pg_start_backup或pg_stop_backup函数,利用此漏洞可绕过目标备份安全限制。
0
Debian Linux 6.0 x
PostgreSQL 9.2.x
PostgreSQL 9.1.x
厂商补丁:

PostgreSQL

目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:

http://www.postgresql.org

Related

postgresql 1
cve 1
nessus 17
huawei 1
cvelist 1
ubuntucve 1
prion 1
openvas 21
osv 2
debian 5
suse 5
freebsd 1
vmware 1
securityvulns 4
ubuntu 1
fedora 3
amazon 1
gentoo 1
postgresql
postgresql
Vulnerability in core server (CVE-2013-1901)
2013-04-04 17:55:00
cve
cve
CVE-2013-1901
2013-04-04 17:55:00
nessus
nessus
PostgreSQL 9.1 < 9.1.9 / 9.2 < 9.2.4 Denial of Service
2013-04-08 00:00:00
Fedora 17 : postgresql-9.1.9-1.fc17 (2013-5000)
2013-04-07 00:00:00
Fedora 18 : postgresql-9.2.4-1.fc18 (2013-4951)
2013-04-07 00:00:00
huawei
huawei
Security Advisory - Authentication Bypass Vulnerability in the Backup Function of GaussDB
2017-05-31 00:00:00
cvelist
cvelist
CVE-2013-1901
2013-04-04 17:00:00
ubuntucve
ubuntucve
CVE-2013-1901
2013-04-04 00:00:00
prion
prion
Design/Logic Flaw
2013-04-04 17:55:00
openvas
openvas
PostgreSQL Security Bypass Vulnerability (Apr 2013) - Windows
2013-04-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2013:0633-1)
2021-06-09 00:00:00
Ubuntu: Security Advisory (USN-1789-1)
2013-04-05 00:00:00
osv
osv
postgresql-8.4 - guessable random numbers
2013-04-04 00:00:00
postgresql-9.1 - several
2013-04-04 00:00:00
debian
debian
[SECURITY] [DSA 2658-1] postgresql-9.1 security update
2013-04-04 14:06:34
[SECURITY] [DSA 2657-1] postgresql-8.4 security update
2013-04-04 14:05:19
[SECURITY] [DSA 2657-1] postgresql-8.4 security update
2013-04-04 13:47:32
suse
suse
postgresql91 to version 9.1.9. (important)
2013-04-05 10:04:26
Security update for PostgreSQL (important)
2013-04-23 22:04:36
postgresql92: Various security fixes. Update to 9.2.4. (important)
2013-04-05 10:04:42
freebsd
freebsd
PostgreSQL -- anonymous remote access data corruption vulnerability
2013-04-04 00:00:00
vmware
vmware
VMware vFabric Postgres security updates
2013-04-04 00:00:00
securityvulns
securityvulns
[USN-1789-1] PostgreSQL vulnerabilities
2013-04-08 00:00:00
PostgreSQL multiple security vulnerabilities
2013-04-08 00:00:00
APPLE-SA-2013-09-12-1 OS X Mountain Lion v10.8.5 and Security Update 2013-004
2013-10-03 00:00:00
ubuntu
ubuntu
PostgreSQL vulnerabilities
2013-04-04 00:00:00
fedora
fedora
[SECURITY] Fedora 19 Update: postgresql-9.2.4-1.fc19
2013-04-20 19:59:46
[SECURITY] Fedora 18 Update: postgresql-9.2.4-1.fc18
2013-04-05 22:59:41
[SECURITY] Fedora 17 Update: postgresql-9.1.9-1.fc17
2013-04-05 23:11:53
amazon
amazon
Critical: postgresql9
2013-04-04 11:49:00
gentoo
gentoo
PostgreSQL: Multiple vulnerabilities
2014-08-29 00:00:00

0.003 Low

EPSS

Percentile

64.1%

JSON
Related for SSV:60719
postgresql1cve1nessus17huawei1cvelist1ubuntucve1prion1openvas21osv2debian5suse5freebsd1vmware1securityvulns4ubuntu1fedora3amazon1gentoo1