SecurityTracker.com
Keep Track of the Latest Vulnerabilities
with SecurityTracker!
    Home    |    View Topics    |    Search    |   



Category:   Application (Generic)  >   Perl Vendors:   Wall, Larry
(Red Hat Issues Fix for Perl) PostgreSQL Flaws in Safe.pm and PL/Perl Let Remote Authenticated Users Gain Elevated Privileges
SecurityTracker Alert ID:  1024064
SecurityTracker URL:  https://securitytracker.com/id/1024064
CVE Reference:   CVE-2010-1447   (Links to External Site)
Date:  Jun 7 2010
Impact:   Execution of arbitrary code via network, User access via network
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): 7.4.x, 8.0.x, 8.1.x, 8.2.x, 8.3.x, 8.4.x
Description:   A vulnerability was reported in PostgreSQL. A remote authenticated user can gain elevated privileges. Perl is affected.

A remote authenticated user can exploit a flaw in Safe.pm and PL/Perl to execute arbitrary Perl code on the target database server.

Systems with PL/Perl installed and enabled are affected.
Impact:   A remote authenticated user can execute arbitrary Tcl code on the target database server.
Solution:   Red Hat has issued a fix for Perl for CVE-2010-1447.

The Red Hat advisory is available at:

https://rhn.redhat.com/errata/RHSA-2010-0457.html
Cause:   Not specified
Underlying OS:  Linux (Red Hat Enterprise)
Underlying OS Comments:  3, 4

Message History:   This archive entry is a follow-up to the message listed below.
May 18 2010 PostgreSQL Flaws in Safe.pm and PL/Perl Let Remote Authenticated Users Gain Elevated Privileges


 Source Message Contents
Subject:  [RHSA-2010:0457-01] Moderate: perl security update


[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page



Home   |    View Topics   |    Search


Content previously copyright SecurityGlobal.net LLC placed in the public domain on December 31, 2019.