What is the severity of REDHAT-BUG-583072?

The severity of REDHAT-BUG-583072 is considered high due to its potential impact on database security.

How do I fix REDHAT-BUG-583072?

To fix REDHAT-BUG-583072, you should apply the latest security patches provided by PostgreSQL for the PL/Tcl procedural language.

What systems are affected by REDHAT-BUG-583072?

REDHAT-BUG-583072 affects systems running PostgreSQL with the PL/Tcl procedural language registered.

Who is impacted by REDHAT-BUG-583072?

Remote, authenticated users with privileges to create databases may exploit REDHAT-BUG-583072.

What type of vulnerability is REDHAT-BUG-583072?

REDHAT-BUG-583072 is a permission check flaw in the PostgreSQL PL/Tcl scripting language.

Vulnerability/
REDHAT-BUG-583072

medium

16/4/2010

29/9/2019

REDHAT-BUG-583072

First published: Fri Apr 16 2010(Updated: )

A flaw was found in the way the PostgreSQL enforced permission checks on scripts written in PL/Tcl. Once the PL/Tcl procedural language was registered on particular database, a remote, authenticated user, privileged to create databases, running a specially-crafted PL/Tcl script, could use this flaw to bypass intended PL/Tcl trusted mode restrictions, allowing them to run arbitrary Tcl scripts with the privileges of the database server. References: [1] PostgreSQL PL/Tcl procedural language manual page: <a href="http://www.postgresql.org/docs/8.1/interactive/pltcl.html">http://www.postgresql.org/docs/8.1/interactive/pltcl.html</a>

Affected Software	Affected Version	How to fix
PostgreSQL

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of REDHAT-BUG-583072?
The severity of REDHAT-BUG-583072 is considered high due to its potential impact on database security.
How do I fix REDHAT-BUG-583072?
To fix REDHAT-BUG-583072, you should apply the latest security patches provided by PostgreSQL for the PL/Tcl procedural language.
What systems are affected by REDHAT-BUG-583072?
REDHAT-BUG-583072 affects systems running PostgreSQL with the PL/Tcl procedural language registered.
Who is impacted by REDHAT-BUG-583072?
Remote, authenticated users with privileges to create databases may exploit REDHAT-BUG-583072.
What type of vulnerability is REDHAT-BUG-583072?
REDHAT-BUG-583072 is a permission check flaw in the PostgreSQL PL/Tcl scripting language.

agent/type
agent/last-modified-date
collector/redhat-bugzilla
source/Red Hat
alias/CVE-2010-1170
agent/first-publish-date
agent/source
agent/severity
agent/references
agent/description
agent/event
agent/softwarecombine
agent/tags
agent/guess-ai
agent/software-canonical-lookup
agent/software-canonical-lookup-request
vendor/postgresql
canonical/postgresql

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.

Frequently Asked Questions

What is the severity of REDHAT-BUG-583072?
The severity of REDHAT-BUG-583072 is considered high due to its potential impact on database security.
How do I fix REDHAT-BUG-583072?
To fix REDHAT-BUG-583072, you should apply the latest security patches provided by PostgreSQL for the PL/Tcl procedural language.
What systems are affected by REDHAT-BUG-583072?
REDHAT-BUG-583072 affects systems running PostgreSQL with the PL/Tcl procedural language registered.
Who is impacted by REDHAT-BUG-583072?
Remote, authenticated users with privileges to create databases may exploit REDHAT-BUG-583072.
What type of vulnerability is REDHAT-BUG-583072?
REDHAT-BUG-583072 is a permission check flaw in the PostgreSQL PL/Tcl scripting language.