Secunia Logo  
 Vulnerability InformationVulnerability ScanningCommunityBlog - new entry!Corporate InformationOnline ShopCustomer Login  
 Secunia AdvisoriesSecunia ResearchBinary Analysis  
Home > Vulnerability Information > Secunia Advisories > CVE-2007-0556
Secunia Advisories
Advisories
Search
Advisories by Product
Advisories by Vendor
Historic Advisories
Mailing Lists
Report Vulnerability
Contact Form
Business Solutions Restricted
Partner Solutions Restricted
About


Secunia PSI WorldMap 		 
CVE Reference: CVE-2007-0556
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE:
CVE-2007-0556

Description:
The query planner in PostgreSQL before 8.0.11, 8.1 before 8.1.7, and 8.2 before 8.2.2 does not verify that a table is compatible with a "previously made query plan," which allows remote authenticated users to cause a denial of service (server crash) and possibly access database content via an "ALTER COLUMN TYPE" SQL statement, which can be leveraged to read arbitrary memory from the server.

CVE Status:
Candidate

References:

XF
  http://xforce.iss.net/xforce/xfdb/32191

UBUNTU
  http://www.ubuntu.com/usn/usn-417-2
  http://www.ubuntulinux.org/support/documentation/usn/usn-417-1

TRUSTIX
  http://www.trustix.org/errata/2007/0007

SUSE
  http://www.novell.com/linux/security/advisories/2007_10_sr.html

SUNALERT
  http://sunsolve.sun.com/search/document.do?assetkey=1-26-102825-1

ST
  1017597

SAID
  Secunia Advisory: SA25220
  Secunia Advisory: SA24577
  Secunia Advisory: SA24513
  Secunia Advisory: SA24315
  Secunia Advisory: SA24050
  Secunia Advisory: SA24151
  Secunia Advisory: SA24042
  Secunia Advisory: SA24028
  Secunia Advisory: SA24057
  Secunia Advisory: SA24033

REDHAT
  http://www.redhat.com/support/errata/RHSA-2007-0067.html
  http://www.redhat.com/support/errata/RHSA-2007-0068.html

OSVDB
  33302

MLIST
  http://lists.rpath.com/pipermail/security-announce/2007-February/000141.html

MANDRIVA
  http://www.mandriva.com/security/advisories?name=MDKSA-2007:037

GENTOO
  http://security.gentoo.org/glsa/glsa-200703-15.xml

FEDORA
  http://fedoranews.org/cms/node/2554

CONFIRM
  http://support.avaya.com/elmodocs2/security/ASA-2007-117.htm
  http://www.postgresql.org/support/security

BUGTRAQ
  http://www.securityfocus.com/archive/1/archive/1/459448/100/0/threaded
  http://www.securityfocus.com/archive/1/archive/1/459280/100/0/threaded

BID
  22387


Return to the previous page.


Contact | Terms & Conditions and Copyright | Report Vulnerability | Press | Jobs (open positions) | About Secunia
Copyright Secunia 2002-2009