CVE-2010-4015

medium
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

Buffer overflow in the gettoken function in contrib/intarray/_int_bool.c in the intarray array module in PostgreSQL 9.0.x before 9.0.3, 8.4.x before 8.4.7, 8.3.x before 8.3.14, and 8.2.x before 8.2.20 allows remote authenticated users to cause a denial of service (crash) and possibly execute arbitrary code via integers with a large number of digits to unspecified functions.

References

http://git.postgresql.org/gitweb?p=postgresql.git;a=commitdiff;h=7ccb6dc2d3e266a551827bb99179708580f72431

http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705

http://lists.fedoraproject.org/pipermail/package-announce/2011-February/053817.html

http://lists.fedoraproject.org/pipermail/package-announce/2011-February/053888.html

http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html

http://marc.info/?l=bugtraq&m=134124585221119&w=2

http://osvdb.org/70740

http://secunia.com/advisories/43144

http://secunia.com/advisories/43154

http://secunia.com/advisories/43155

http://secunia.com/advisories/43187

http://secunia.com/advisories/43188

http://secunia.com/advisories/43240

http://www.debian.org/security/2011/dsa-2157

http://www.mandriva.com/security/advisories?name=MDVSA-2011:021

http://www.postgresql.org/about/news.1289

http://www.postgresql.org/support/security

http://www.redhat.com/support/errata/RHSA-2011-0197.html

http://www.redhat.com/support/errata/RHSA-2011-0198.html

http://www.securityfocus.com/bid/46084

http://www.ubuntu.com/usn/USN-1058-1

http://www.vupen.com/english/advisories/2011/0262

http://www.vupen.com/english/advisories/2011/0278

http://www.vupen.com/english/advisories/2011/0283

http://www.vupen.com/english/advisories/2011/0287

http://www.vupen.com/english/advisories/2011/0299

http://www.vupen.com/english/advisories/2011/0303

http://www.vupen.com/english/advisories/2011/0349

https://exchange.xforce.ibmcloud.com/vulnerabilities/65060

Details

Source: MITRE

Published: 2011-02-02

Updated: 2017-08-17

Type: CWE-189

Risk Information

CVSS v2

Base Score: 6.5

Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P

Impact Score: 6.4

Exploitability Score: 8

Severity: MEDIUM

Vulnerable Software

Configuration 1

OR

cpe:2.3:a:postgresql:postgresql:8.3:*:*:*:*:*:*:*

cpe:2.3:a:postgresql:postgresql:8.3.1:*:*:*:*:*:*:*

cpe:2.3:a:postgresql:postgresql:8.3.2:*:*:*:*:*:*:*

cpe:2.3:a:postgresql:postgresql:8.3.3:*:*:*:*:*:*:*

cpe:2.3:a:postgresql:postgresql:8.3.4:*:*:*:*:*:*:*

cpe:2.3:a:postgresql:postgresql:8.3.5:*:*:*:*:*:*:*

cpe:2.3:a:postgresql:postgresql:8.3.6:*:*:*:*:*:*:*

cpe:2.3:a:postgresql:postgresql:8.3.7:*:*:*:*:*:*:*

cpe:2.3:a:postgresql:postgresql:8.3.8:*:*:*:*:*:*:*

cpe:2.3:a:postgresql:postgresql:8.3.9:*:*:*:*:*:*:*

cpe:2.3:a:postgresql:postgresql:8.3.10:*:*:*:*:*:*:*

cpe:2.3:a:postgresql:postgresql:8.3.11:*:*:*:*:*:*:*

cpe:2.3:a:postgresql:postgresql:8.3.12:*:*:*:*:*:*:*

cpe:2.3:a:postgresql:postgresql:8.3.13:*:*:*:*:*:*:*

Configuration 2

OR

cpe:2.3:a:postgresql:postgresql:9.0:*:*:*:*:*:*:*

cpe:2.3:a:postgresql:postgresql:9.0.1:*:*:*:*:*:*:*

cpe:2.3:a:postgresql:postgresql:9.0.2:*:*:*:*:*:*:*

Configuration 3

OR

cpe:2.3:a:postgresql:postgresql:8.4:*:*:*:*:*:*:*

cpe:2.3:a:postgresql:postgresql:8.4.1:*:*:*:*:*:*:*

cpe:2.3:a:postgresql:postgresql:8.4.2:*:*:*:*:*:*:*

cpe:2.3:a:postgresql:postgresql:8.4.3:*:*:*:*:*:*:*

cpe:2.3:a:postgresql:postgresql:8.4.4:*:*:*:*:*:*:*

cpe:2.3:a:postgresql:postgresql:8.4.5:*:*:*:*:*:*:*

cpe:2.3:a:postgresql:postgresql:8.4.6:*:*:*:*:*:*:*

Configuration 4

OR

cpe:2.3:a:postgresql:postgresql:8.2:*:*:*:*:*:*:*

cpe:2.3:a:postgresql:postgresql:8.2.1:*:*:*:*:*:*:*

cpe:2.3:a:postgresql:postgresql:8.2.2:*:*:*:*:*:*:*

cpe:2.3:a:postgresql:postgresql:8.2.3:*:*:*:*:*:*:*

cpe:2.3:a:postgresql:postgresql:8.2.4:*:*:*:*:*:*:*

cpe:2.3:a:postgresql:postgresql:8.2.5:*:*:*:*:*:*:*

cpe:2.3:a:postgresql:postgresql:8.2.6:*:*:*:*:*:*:*

cpe:2.3:a:postgresql:postgresql:8.2.7:*:*:*:*:*:*:*

cpe:2.3:a:postgresql:postgresql:8.2.8:*:*:*:*:*:*:*

cpe:2.3:a:postgresql:postgresql:8.2.9:*:*:*:*:*:*:*

cpe:2.3:a:postgresql:postgresql:8.2.10:*:*:*:*:*:*:*

cpe:2.3:a:postgresql:postgresql:8.2.11:*:*:*:*:*:*:*

cpe:2.3:a:postgresql:postgresql:8.2.12:*:*:*:*:*:*:*

cpe:2.3:a:postgresql:postgresql:8.2.13:*:*:*:*:*:*:*

cpe:2.3:a:postgresql:postgresql:8.2.14:*:*:*:*:*:*:*

cpe:2.3:a:postgresql:postgresql:8.2.15:*:*:*:*:*:*:*

cpe:2.3:a:postgresql:postgresql:8.2.16:*:*:*:*:*:*:*

cpe:2.3:a:postgresql:postgresql:8.2.17:*:*:*:*:*:*:*

cpe:2.3:a:postgresql:postgresql:8.2.18:*:*:*:*:*:*:*

cpe:2.3:a:postgresql:postgresql:8.2.19:*:*:*:*:*:*:*

Tenable Plugins

View all (34 total)

IDNameProductFamilySeverity
75713openSUSE Security Update : postgresql (openSUSE-SU-2011:0254-1)NessusSuSE Local Security Checks
medium
69872Juniper NSM Servers < 2012.1 Multiple VulnerabilitiesNessusMisc.
high
68194Oracle Linux 5 : postgresql84 (ELSA-2011-0198)NessusOracle Linux Local Security Checks
medium
68193Oracle Linux 4 / 5 / 6 : postgresql (ELSA-2011-0197)NessusOracle Linux Local Security Checks
medium
63351PostgreSQL 8.2 < 8.2.20 / 8.3 < 8.3.14 / 8.4 < 8.4.7 / 9.0 < 9.0.3 Buffer Overflow VulnerabilityNessusDatabases
medium
60951Scientific Linux Security Update : postgresql on SL4.x, SL5.x i386/x86_64NessusScientific Linux Local Security Checks
medium
60950Scientific Linux Security Update : postgresql84 on SL5.x i386/x86_64NessusScientific Linux Local Security Checks
medium
57244SuSE 10 Security Update : PostgreSQL (ZYPP Patch Number 7404)NessusSuSE Local Security Checks
medium
56626GLSA-201110-22 : PostgreSQL: Multiple vulnerabilitiesNessusGentoo Local Security Checks
high
53793openSUSE Security Update : postgresql (openSUSE-SU-2011:0254-1)NessusSuSE Local Security Checks
medium
53417CentOS 5 : postgresql84 (CESA-2011:0198)NessusCentOS Local Security Checks
medium
53237SuSE 10 Security Update : PostgreSQL (ZYPP Patch Number 7341)NessusSuSE Local Security Checks
medium
53230SuSE 11.1 Security Update : PostgreSQL (SAT Patch Number 3977)NessusSuSE Local Security Checks
medium
51927Fedora 13 : postgresql-8.4.7-1.fc13 (2011-0963)NessusFedora Local Security Checks
medium
51898Mandriva Linux Security Advisory : postgresql (MDVSA-2011:021)NessusMandriva Local Security Checks
medium
51897Fedora 14 : postgresql-8.4.7-1.fc14 (2011-0990)NessusFedora Local Security Checks
medium
51888CentOS 4 / 5 : postgresql (CESA-2011:0197)NessusCentOS Local Security Checks
medium
51871Ubuntu 6.06 LTS / 8.04 LTS / 9.10 / 10.04 LTS / 10.10 : postgresql-8.1, postgresql-8.3, postgresql-8.4 vulnerability (USN-1058-1)NessusUbuntu Local Security Checks
medium
51869RHEL 5 : postgresql84 (RHSA-2011:0198)NessusRed Hat Local Security Checks
medium
51868RHEL 4 / 5 / 6 : postgresql (RHSA-2011:0197)NessusRed Hat Local Security Checks
medium
51862Debian DSA-2157-1 : postgresql-8.3, postgresql-8.4, postgresql-9.0 - buffer overflowNessusDebian Local Security Checks
medium
5757PostgreSQL < 9.0.3 / 8.4.7 / 8.3.14 / 8.2.20 Code Execution VulnerabilityNessus Network MonitorDatabase
medium
39558Solaris 10 (x86) : 138827-12 (deprecated)NessusSolaris Local Security Checks
medium
39557Solaris 10 (x86) : 138825-12 (deprecated)NessusSolaris Local Security Checks
medium
39556Solaris 10 (x86) : 138823-12 (deprecated)NessusSolaris Local Security Checks
medium
39555Solaris 10 (sparc) : 138826-12 (deprecated)NessusSolaris Local Security Checks
medium
39554Solaris 10 (sparc) : 138824-12 (deprecated)NessusSolaris Local Security Checks
medium
39553Solaris 10 (sparc) : 138822-12 (deprecated)NessusSolaris Local Security Checks
medium
31336Solaris 10 (x86) : 137005-09 (deprecated)NessusSolaris Local Security Checks
medium
31335Solaris 10 (x86) : 137001-08 (deprecated)NessusSolaris Local Security Checks
medium
31332Solaris 10 (sparc) : 137004-09 (deprecated)NessusSolaris Local Security Checks
medium
31331Solaris 10 (sparc) : 137000-08 (deprecated)NessusSolaris Local Security Checks
medium
30175Solaris 10 (x86) : 136999-10 (deprecated)NessusSolaris Local Security Checks
medium
30169Solaris 10 (sparc) : 136998-10 (deprecated)NessusSolaris Local Security Checks
medium