CVE-2007-6601

The DBLink module in PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, 7.4 before 7.4.19, and 7.3 before 7.3.21, when local trust or ident authentication is used, allows remote attackers to gain privileges via unspecified vectors. NOTE: this issue exists because of an incomplete fix for CVE-2007-3278.

CVSS v2.0 7.2 HIGH

7.2^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:L/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 3.9 / Impact : 10.0

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://www.postgresql.org/about/news.905	Broken Link
http://www.securityfocus.com/bid/27163	Patch Third Party Advisory VDB Entry
http://securitytracker.com/id?1019157	Broken Link Third Party Advisory VDB Entry
http://secunia.com/advisories/28359	Not Applicable Vendor Advisory
http://www.mandriva.com/security/advisories?name=MDVSA-2008:004	Broken Link
https://issues.rpath.com/browse/RPL-1768	Broken Link
http://www.debian.org/security/2008/dsa-1460	Third Party Advisory
http://www.debian.org/security/2008/dsa-1463	Third Party Advisory
https://www.redhat.com/archives/fedora-package-announce/2008-January/msg00397.html	Mailing List Third Party Advisory
https://www.redhat.com/archives/fedora-package-announce/2008-January/msg00469.html	Mailing List Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2008-0038.html	Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2008-0039.html	Third Party Advisory
http://sunsolve.sun.com/search/document.do?assetkey=1-26-103197-1	Broken Link
http://secunia.com/advisories/28376	Not Applicable
http://secunia.com/advisories/28438	Not Applicable
http://secunia.com/advisories/28445	Not Applicable
http://secunia.com/advisories/28437	Not Applicable
http://secunia.com/advisories/28454	Not Applicable
http://secunia.com/advisories/28464	Not Applicable
http://secunia.com/advisories/28477	Not Applicable
http://secunia.com/advisories/28479	Not Applicable
http://secunia.com/advisories/28455	Not Applicable
http://security.gentoo.org/glsa/glsa-200801-15.xml	Third Party Advisory
http://secunia.com/advisories/28679	Not Applicable
http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00000.html	Broken Link
http://secunia.com/advisories/28698	Not Applicable
http://www.redhat.com/support/errata/RHSA-2008-0040.html	Third Party Advisory
http://sunsolve.sun.com/search/document.do?assetkey=1-66-200559-1	Broken Link
http://secunia.com/advisories/29638	Not Applicable
http://www.vupen.com/english/advisories/2008/1071/references	Permissions Required
http://www.vupen.com/english/advisories/2008/0109	Permissions Required Third Party Advisory
http://www.vupen.com/english/advisories/2008/0061	Permissions Required
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01420154	Broken Link
https://exchange.xforce.ibmcloud.com/vulnerabilities/39500	Third Party Advisory VDB Entry
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11127	Broken Link
https://usn.ubuntu.com/568-1/	Broken Link
http://www.securityfocus.com/archive/1/486407/100/0/threaded	Third Party Advisory VDB Entry
http://www.securityfocus.com/archive/1/485864/100/0/threaded	Third Party Advisory VDB Entry

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:postgresql:postgresql:8.2:::::::*
	cpe:2.3:a:postgresql:postgresql::::::::
	cpe:2.3:a:postgresql:postgresql::::::::
	cpe:2.3:a:postgresql:postgresql::::::::
	cpe:2.3:a:postgresql:postgresql::::::::
	cpe:2.3:a:postgresql:postgresql::::::::

Configuration 2 (hide)

OR	cpe:2.3:o:debian:debian_linux:3.1:::::::*
	cpe:2.3:o:debian:debian_linux:4.0:::::::*

Configuration 3 (hide)

OR	cpe:2.3:o:fedoraproject:fedora:8:::::::*
	cpe:2.3:o:fedoraproject:fedora:7:::::::*

Information

Published : 2008-01-09 13:46

Updated : 2023-01-18 13:19

NVD link : CVE-2007-6601

Mitre link : CVE-2007-6601

JSON object : View

CWE

CWE-287

Improper Authentication

Products Affected

debian

debian_linux

postgresql

postgresql

fedoraproject

fedora

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://www.postgresql.org/about/news.905", "name": "http://www.postgresql.org/about/news.905", "tags": ["Broken Link"], "refsource": "CONFIRM"}, {"url": "http://www.securityfocus.com/bid/27163", "name": "27163", "tags": ["Patch", "Third Party Advisory", "VDB Entry"], "refsource": "BID"}, {"url": "http://securitytracker.com/id?1019157", "name": "1019157", "tags": ["Broken Link", "Third Party Advisory", "VDB Entry"], "refsource": "SECTRACK"}, {"url": "http://secunia.com/advisories/28359", "name": "28359", "tags": ["Not Applicable", "Vendor Advisory"], "refsource": "SECUNIA"}, {"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:004", "name": "MDVSA-2008:004", "tags": ["Broken Link"], "refsource": "MANDRIVA"}, {"url": "https://issues.rpath.com/browse/RPL-1768", "name": "https://issues.rpath.com/browse/RPL-1768", "tags": ["Broken Link"], "refsource": "CONFIRM"}, {"url": "http://www.debian.org/security/2008/dsa-1460", "name": "DSA-1460", "tags": ["Third Party Advisory"], "refsource": "DEBIAN"}, {"url": "http://www.debian.org/security/2008/dsa-1463", "name": "DSA-1463", "tags": ["Third Party Advisory"], "refsource": "DEBIAN"}, {"url": "https://www.redhat.com/archives/fedora-package-announce/2008-January/msg00397.html", "name": "FEDORA-2008-0478", "tags": ["Mailing List", "Third Party Advisory"], "refsource": "FEDORA"}, {"url": "https://www.redhat.com/archives/fedora-package-announce/2008-January/msg00469.html", "name": "FEDORA-2008-0552", "tags": ["Mailing List", "Third Party Advisory"], "refsource": "FEDORA"}, {"url": "http://www.redhat.com/support/errata/RHSA-2008-0038.html", "name": "RHSA-2008:0038", "tags": ["Third Party Advisory"], "refsource": "REDHAT"}, {"url": "http://www.redhat.com/support/errata/RHSA-2008-0039.html", "name": "RHSA-2008:0039", "tags": ["Third Party Advisory"], "refsource": "REDHAT"}, {"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-103197-1", "name": "103197", "tags": ["Broken Link"], "refsource": "SUNALERT"}, {"url": "http://secunia.com/advisories/28376", "name": "28376", "tags": ["Not Applicable"], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/28438", "name": "28438", "tags": ["Not Applicable"], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/28445", "name": "28445", "tags": ["Not Applicable"], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/28437", "name": "28437", "tags": ["Not Applicable"], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/28454", "name": "28454", "tags": ["Not Applicable"], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/28464", "name": "28464", "tags": ["Not Applicable"], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/28477", "name": "28477", "tags": ["Not Applicable"], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/28479", "name": "28479", "tags": ["Not Applicable"], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/28455", "name": "28455", "tags": ["Not Applicable"], "refsource": "SECUNIA"}, {"url": "http://security.gentoo.org/glsa/glsa-200801-15.xml", "name": "GLSA-200801-15", "tags": ["Third Party Advisory"], "refsource": "GENTOO"}, {"url": "http://secunia.com/advisories/28679", "name": "28679", "tags": ["Not Applicable"], "refsource": "SECUNIA"}, {"url": "http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00000.html", "name": "SUSE-SA:2008:005", "tags": ["Broken Link"], "refsource": "SUSE"}, {"url": "http://secunia.com/advisories/28698", "name": "28698", "tags": ["Not Applicable"], "refsource": "SECUNIA"}, {"url": "http://www.redhat.com/support/errata/RHSA-2008-0040.html", "name": "RHSA-2008:0040", "tags": ["Third Party Advisory"], "refsource": "REDHAT"}, {"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-66-200559-1", "name": "200559", "tags": ["Broken Link"], "refsource": "SUNALERT"}, {"url": "http://secunia.com/advisories/29638", "name": "29638", "tags": ["Not Applicable"], "refsource": "SECUNIA"}, {"url": "http://www.vupen.com/english/advisories/2008/1071/references", "name": "ADV-2008-1071", "tags": ["Permissions Required"], "refsource": "VUPEN"}, {"url": "http://www.vupen.com/english/advisories/2008/0109", "name": "ADV-2008-0109", "tags": ["Permissions Required", "Third Party Advisory"], "refsource": "VUPEN"}, {"url": "http://www.vupen.com/english/advisories/2008/0061", "name": "ADV-2008-0061", "tags": ["Permissions Required"], "refsource": "VUPEN"}, {"url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01420154", "name": "SSRT080006", "tags": ["Broken Link"], "refsource": "HP"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/39500", "name": "postgresql-dblink-privilege-escalation(39500)", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "XF"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11127", "name": "oval:org.mitre.oval:def:11127", "tags": ["Broken Link"], "refsource": "OVAL"}, {"url": "https://usn.ubuntu.com/568-1/", "name": "USN-568-1", "tags": ["Broken Link"], "refsource": "UBUNTU"}, {"url": "http://www.securityfocus.com/archive/1/486407/100/0/threaded", "name": "20080115 rPSA-2008-0016-1 postgresql postgresql-server", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "BUGTRAQ"}, {"url": "http://www.securityfocus.com/archive/1/485864/100/0/threaded", "name": "20080107 PostgreSQL 2007-01-07 Cumulative Security Release", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "BUGTRAQ"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "The DBLink module in PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, 7.4 before 7.4.19, and 7.3 before 7.3.21, when local trust or ident authentication is used, allows remote attackers to gain privileges via unspecified vectors. NOTE: this issue exists because of an incomplete fix for CVE-2007-3278."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-287"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2007-6601", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 7.2, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "severity": "HIGH", "impactScore": 10.0, "obtainAllPrivilege": true, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2008-01-09T21:46Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndExcluding": "7.3.21", "versionStartIncluding": "7.3.0"}, {"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndExcluding": "7.4.19", "versionStartIncluding": "7.4.0"}, {"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndExcluding": "8.0.15", "versionStartIncluding": "8.0.0"}, {"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndExcluding": "8.1.11", "versionStartIncluding": "8.1.0"}, {"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndExcluding": "8.2.6", "versionStartIncluding": "8.2.0"}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:o:debian:debian_linux:3.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:debian:debian_linux:4.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:o:fedoraproject:fedora:8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:fedoraproject:fedora:7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2023-01-18T21:19Z"}

7.2 /10