Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
PostgreSQL Permissions Privileges and Access Controls Vulnerability - CVE-2007-6600 - Vulnerability Database
PostgreSQL

PostgreSQL Permissions Privileges and Access Controls Vulnerability - CVE-2007-6600

Medium
Reference: CVE-2007-6600
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2007-6600
Title: PostgreSQL Permissions Privileges and Access Controls Vulnerability
Overview:

PostgreSQL 8.2 before 8.2.6 8.1 before 8.1.11 8.0 before 8.0.15 7.4 before 7.4.19 and 7.3 before 7.3.21 uses superuser privileges instead of table owner privileges for (1) VACUUM and (2) ANALYZE operations within index functions and supports (3) SET ROLE and (4) SET SESSION AUTHORIZATION within index functions which allows remote authenticated users to gain privileges.