| VID |
25180 |
| Severity |
40 |
| Port |
5432 |
| Protocol |
TCP |
| Class |
DB |
| Detailed Description |
The PostgreSQL server, according to its version number, has multiple vulnerabilities. PostgreSQL is a Object-Relational database management system (DBMS) that supports an extended subset of SQL.
The version of PostgreSQL installed on the remote host is 9.5.x prior to 9.5.2. It is, therefore, affected by multiple vulnerabilities :
- A flaw exists that is triggered when a query plan is incorrectly reused for more than one ROLE within the same session. An authenticated, remote attacker can exploit this to cause an incorrect set of Row Level Security (RLS) policies to be used for the query. (CVE-2016-2193)
- A denial of service vulnerability exists within file contrib/pageinspect/brinfuncs.c when certain functions in the pageinspect extension are used with BRIN index pages. An authenticated, remote attacker can exploit this, via contrived 'bytea' values, to crash the server or disclose a small amount of server memory. (CVE-2016-3065)
* Note: This check solely relied on the version number of the remote PostgreSQL server to assess this vulnerability, so this might be a false positive.
* References:
http://www.postgresql.org/about/news/1656/
http://www.postgresql.org/docs/current/static/release-9-5-2.html
* Platforms Affected:
PostgreSQL prior to 9.5.2
Any operating system Any version |
| Recommendation |
Upgrade to the latest version of PostgreSQL (9.5.2 or later), available from the PostgreSQL Web page at http://www.postgresql.org/download/ |
| Related URL |
CVE-2016-2193,CVE-2016-3065 (CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
