CVE-2007-0556

MEDIUM severity · CVSS 6.6

6.6CVSS MEDIUM

Summary

The query planner in PostgreSQL before 8.0.11, 8.1 before 8.1.7, and 8.2 before 8.2.2 does not verify that a table is compatible with a "previously made query plan," which allows remote authenticated users to cause a denial of service (server crash) and possibly access database content via an "ALTER COLUMN TYPE" SQL statement, which can be leveraged to read arbitrary memory from the server.

Impact & exploitability

Attack vectorNetwork

Attack complexityHigh

Privileges required—

User interaction—

Confidentiality impact—

Integrity impactNone

Availability impact—

Exploit probability (EPSS)2%

AV:N/AC:H/Au:S/C:C/I:N/A:C

Affected products we track (1)

PostgreSQL

Recommendation

Apply the vendor fix in your normal patch cycle. Open any affected product above for its exact safe version.

Additional information

NVD record
http://secunia.com/advisories/24033Advisory
http://fedoranews.org/cms/node/2554
http://lists.rpath.com/pipermail/security-announce/2007-February/000141.html
http://osvdb.org/33302
http://secunia.com/advisories/24028
http://secunia.com/advisories/24042
http://secunia.com/advisories/24050
http://secunia.com/advisories/24057