CVE-2010-1170

Vulnerability Description

The PL/Tcl implementation in PostgreSQL 7.4 before 7.4.29, 8.0 before 8.0.25, 8.1 before 8.1.21, 8.2 before 8.2.17, 8.3 before 8.3.11, 8.4 before 8.4.4, and 9.0 Beta before 9.0 Beta 2 loads Tcl code from the pltcl_modules table regardless of the table's ownership and permissions, which allows remote authenticated users, with database-creation privileges, to execute arbitrary Tcl code by creating this table and inserting a crafted Tcl script.

CVSS Score

Affected Products

Related Weaknesses (CWE)

References

• http://lists.fedoraproject.org/pipermail/package-announce/2010-May/041559.html
• http://lists.fedoraproject.org/pipermail/package-announce/2010-May/041579.html
• http://lists.fedoraproject.org/pipermail/package-announce/2010-May/041591.html
• http://lists.opensuse.org/opensuse-security-announce/2010-08/msg00001.html
• http://marc.info/?l=bugtraq&m=134124585221119&w=2
• http://osvdb.org/64757
• http://secunia.com/advisories/39815
• http://secunia.com/advisories/39820
• http://secunia.com/advisories/39845Vendor Advisory
• http://secunia.com/advisories/39898
• http://secunia.com/advisories/39939
• http://www.debian.org/security/2010/dsa-2051
• http://www.mandriva.com/security/advisories?name=MDVSA-2010:103
• http://www.openwall.com/lists/oss-security/2010/05/20/5
• http://www.postgresql.org/about/news.1203Vendor Advisory