CVE-2007-2138

PostgreSQL < 7.3.19, 7.4.x < 7.4.17, 8.0.x < 8.0.13, 8.1.x < 8.1.9, 8.2.x < 8.2.4 - Privilege Escalation via Search Path

Title source: llm
STIX 2.1

Description

Untrusted search path vulnerability in PostgreSQL before 7.3.19, 7.4.x before 7.4.17, 8.0.x before 8.0.13, 8.1.x before 8.1.9, and 8.2.x before 8.2.4 allows remote authenticated users, when permitted to call a SECURITY DEFINER function, to gain the privileges of the function owner, related to "search_path settings."

References (31)

Core 31
Core References
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25334
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25717
Broken Link vendor-advisory x_refsource_trustix
http://www.trustix.org/errata/2007/0015/
Patch, Vendor Advisory x_refsource_confirm
http://www.postgresql.org/about/news.791
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25058
Third Party Advisory vendor-advisory x_refsource_gentoo
http://security.gentoo.org/glsa/glsa-200705-12.xml
Third Party Advisory vendor-advisory x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDKSA-2007:094
Broken Link x_refsource_confirm
https://issues.rpath.com/browse/RPL-1292
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/24999
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25037
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/24989
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/23618
Third Party Advisory x_refsource_confirm
http://support.avaya.com/elmodocs2/security/ASA-2007-190.htm
Third Party Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2007-0337.html
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25725
Patch, Vendor Advisory x_refsource_confirm
http://www.postgresql.org/support/security.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id?1017974
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/33842
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25720
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2007/dsa-1311
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2007/dsa-1309
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2007/1549
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25019
Third Party Advisory vendor-advisory x_refsource_ubuntu
http://www.ubuntu.com/usn/usn-454-1
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25238
Third Party Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2007-0336.html
Broken Link vendor-advisory x_refsource_sunalert
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102894-1
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25184
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2007/1497
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25005

Scores

EPSS 0.0165
EPSS Percentile 82.3%

Details

CWE
CWE-264
Status published
Products (6)
canonical/ubuntu_linux 6.06
canonical/ubuntu_linux 6.10
canonical/ubuntu_linux 7.04
debian/debian_linux 3.1
debian/debian_linux 4.0
postgresql/postgresql < 7.3.19
Published Apr 24, 2007
Tracked Since Feb 18, 2026