Vulnerability CVE-2010-1975 - CERT Civis.Net

Vulnerability Name:

CVE-2010-1975 (CCN-58752)

Assigned:

2010-05-17

Published:

2010-05-17

Updated:

2017-09-19

Summary:

PostgreSQL 7.4 before 7.4.29, 8.0 before 8.0.25, 8.1 before 8.1.21, 8.2 before 8.2.17, 8.3 before 8.3.11, and 8.4 before 8.4.4 does not properly check privileges during certain RESET ALL operations, which allows remote authenticated users to remove arbitrary parameter settings via a (1) ALTER USER or (2) ALTER DATABASE statement.

CVSS v3 Severity:

3.5 Low (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): Low User Interaction (UI): Required
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): Low Availibility (A): None

CVSS v2 Severity:

5.5 Medium (CVSS v2 Vector: AV:N/AC:L/Au:S/C:P/I:P/A:N)
4.0 Medium (Temporal CVSS v2 Vector: AV:N/AC:L/Au:S/C:P/I:P/A:N/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): None

4.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:S/C:N/I:P/A:N)
3.0 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:S/C:N/I:P/A:N/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

4.9 Medium (REDHAT CVSS v2 Vector: AV:A/AC:M/Au:S/C:P/I:P/A:P)
3.6 Low (REDHAT Temporal CVSS v2 Vector: AV:A/AC:M/Au:S/C:P/I:P/A:P/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Adjacent_Network Access Complexity (AC): Medium Authentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

Vulnerability Type:

Vulnerability Consequences:

Bypass Security

References:

Source: CCN
Type: Sun Security Blog
CVE-2010-1169 CVE-2010-1170 CVE-2010-1975 Multiple Vulnerabilities in PostgreSQL 8.2

Source: MITRE
Type: CNA
CVE-2010-1975

Source: CCN
Type: HP Security Bulletin HPSBMU02781 SSRT100617
HP Network Node Manager i (NNMi) for HP-UX, Linux, Solaris, and Windows running PostgreSQL, Remote Execution of Arbitrary Code, Denial of Service (DoS)

Source: SUSE
Type: UNKNOWN
SUSE-SR:2010:014

Source: HP
Type: UNKNOWN
SSRT100617

Source: CCN
Type: RHSA-2010-0428
Moderate: postgresql security update

Source: CCN
Type: RHSA-2010-0429
Moderate: postgresql security update

Source: CCN
Type: RHSA-2010-0430
Moderate: postgresql84 security update

Source: SECUNIA
Type: UNKNOWN
39939

Source: CCN
Type: SA40585
Sun Solaris PostgreSQL Multiple Vulnerabilities

Source: CCN
Type: SA47503
Blue Coat IntelligenceCenter Multiple Vulnerabilities

Source: CCN
Type: SA47507
Blue Coat IntelligenceCenter Multiple Vulnerabilities

Source: CCN
Type: SA49719
HP Network Node Manager i Multiple Vulnerabilities

Source: CCN
Type: SA49747
HP Network Node Manager i Multiple Vulnerabilities

Source: DEBIAN
Type: UNKNOWN
DSA-2051

Source: DEBIAN
Type: DSA-2051
postgresql-8.3 -- several vulnerabilities

Source: MANDRIVA
Type: UNKNOWN
MDVSA-2010:103

Source: CCN
Type: OSVDB ID: 64792
PostgreSQL RESET ALL Operation Privilege Check Weakness Arbitrary Parameter Setting Deletion

Source: CONFIRM
Type: UNKNOWN
http://www.postgresql.org/docs/current/static/release-7-4-29.html

Source: CONFIRM
Type: UNKNOWN
http://www.postgresql.org/docs/current/static/release-8-0-25.html

Source: CONFIRM
Type: UNKNOWN
http://www.postgresql.org/docs/current/static/release-8-1-21.html

Source: CONFIRM
Type: UNKNOWN
http://www.postgresql.org/docs/current/static/release-8-2-17.html

Source: CONFIRM
Type: UNKNOWN
http://www.postgresql.org/docs/current/static/release-8-3-11.html

Source: CONFIRM
Type: UNKNOWN
http://www.postgresql.org/docs/current/static/release-8-4-4.html

Source: CCN
Type: PostgreSQL Web Site
PostgreSQL Security Information

Source: BID
Type: UNKNOWN
40304

Source: CCN
Type: BID-40304
PostgreSQL 'RESET ALL' Unauthorized Access Vulnerability

Source: CCN
Type: USN-942-1
PostgreSQL vulnerabilities

Source: VUPEN
Type: UNKNOWN
ADV-2010-1207

Source: VUPEN
Type: UNKNOWN
ADV-2010-1221

Source: XF
Type: UNKNOWN
postgresql-resetall-security-bypass(58752)

Source: CCN
Type: Blue Coat Security Advisories ID: SA66
January 10, 2012 - Multiple Tomcat vulnerabilities in IntelligenceCenter

Source: CCN
Type: Blue Coat Security Advisories ID: SA67
January 10, 2012 - Multiple PostgreSQL vulnerabilities in IntelligenceCenter

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:11004

Vulnerable Configuration:

Configuration 1:

cpe:/a:postgresql:postgresql:7.4:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:7.4.1:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:7.4.2:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:7.4.3:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:7.4.4:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:7.4.5:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:7.4.6:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:7.4.7:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:7.4.8:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:7.4.9:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:7.4.10:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:7.4.11:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:7.4.12:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:7.4.13:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:7.4.14:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:7.4.15:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:7.4.16:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:7.4.17:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:7.4.18:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:7.4.19:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:7.4.20:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:7.4.21:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:7.4.22:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:7.4.23:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:7.4.24:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:7.4.25:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:7.4.26:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:7.4.27:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:7.4.28:*:*:*:*:*:*:*

Configuration 2:

cpe:/a:postgresql:postgresql:8.0:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.0.0:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.0.1:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.0.2:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.0.3:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.0.4:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.0.5:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.0.6:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.0.7:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.0.8:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.0.9:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.0.10:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.0.11:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.0.12:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.0.13:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.0.14:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.0.15:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.0.16:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.0.17:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.0.18:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.0.19:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.0.20:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.0.21:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.0.22:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.0.23:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.0.24:*:*:*:*:*:*:*

Configuration 3:

cpe:/a:postgresql:postgresql:8.1:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.1.0:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.1.1:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.1.2:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.1.3:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.1.4:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.1.5:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.1.6:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.1.7:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.1.8:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.1.9:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.1.10:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.1.11:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.1.12:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.1.13:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.1.14:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.1.15:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.1.16:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.1.17:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.1.18:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.1.19:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.1.20:*:*:*:*:*:*:*

Configuration 4:

cpe:/a:postgresql:postgresql:8.2:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.2.1:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.2.2:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.2.3:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.2.4:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.2.5:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.2.6:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.2.7:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.2.8:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.2.9:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.2.10:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.2.11:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.2.12:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.2.13:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.2.14:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.2.15:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.2.16:*:*:*:*:*:*:*

Configuration 5:

cpe:/a:postgresql:postgresql:8.3:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.3.1:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.3.2:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.3.3:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.3.4:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.3.5:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.3.6:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.3.7:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.3.8:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.3.9:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.3.10:*:*:*:*:*:*:*

Configuration 6:

cpe:/a:postgresql:postgresql:8.4:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.4.1:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.4.2:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.4.3:*:*:*:*:*:*:*

Configuration 7:

cpe:/a:postgresql:postgresql:9.0.0:beta1:*:*:*:*:*:*

Configuration RedHat 1:

cpe:/o:redhat:enterprise_linux:4:*:*:*:*:*:*:*

Configuration RedHat 2:

cpe:/o:redhat:enterprise_linux:4::as:*:*:*:*:*

Configuration RedHat 3:

cpe:/o:redhat:enterprise_linux:4::desktop:*:*:*:*:*

Configuration RedHat 4:

cpe:/o:redhat:enterprise_linux:4::es:*:*:*:*:*

Configuration RedHat 5:

cpe:/o:redhat:enterprise_linux:4::ws:*:*:*:*:*

Configuration RedHat 6:

cpe:/o:redhat:enterprise_linux:5:*:*:*:*:*:*:*

Configuration RedHat 7:

cpe:/o:redhat:enterprise_linux:5::client:*:*:*:*:*

Configuration RedHat 8:

cpe:/o:redhat:enterprise_linux:5::client_workstation:*:*:*:*:*

Configuration RedHat 9:

cpe:/o:redhat:enterprise_linux:5::server:*:*:*:*:*

Configuration CCN 1:

cpe:/a:postgresql:postgresql:8.0:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.1:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.2:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:7.4:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.3:*:*:*:*:*:*:*

OR cpe:/a:postgresql:postgresql:8.4:*:*:*:*:*:*:*

AND

cpe:/o:redhat:enterprise_linux:4::as:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:4::desktop:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:4::es:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:4::ws:*:*:*:*:*

OR cpe:/o:canonical:ubuntu:6.06:*:lts:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux_corporate_server:4.0:*:*:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux_corporate_server:4.0:*:x86_64:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:5:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:5:*:client_workstation:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux:2008.0:*:x86-64:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:5:*:client:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux:2008.0:*:*:*:*:*:*:*

OR cpe:/o:canonical:ubuntu:8.04:*:lts:*:*:*:*:*

OR cpe:/o:mandriva:linux:2009.0:*:*:*:*:*:*:*

OR cpe:/o:mandriva:linux:2009.0:-:x86_64:*:*:*:*:*

OR cpe:/o:debian:debian_linux:5.0:*:*:*:*:*:*:*

OR cpe:/o:mandriva:linux:2009.1:*:*:*:*:*:*:*

OR cpe:/o:mandriva:linux:2009.1:*:*:*:x86_64:*:*:*

OR cpe:/o:mandriva:enterprise_server:5:*:*:*:*:*:*:*

OR cpe:/o:mandriva:enterprise_server:5:*:*:*:x86_64:*:*:*

OR cpe:/o:mandriva:linux:2010:*:*:*:x86_64:*:*:*

OR cpe:/o:mandriva:linux:2010:*:*:*:*:*:*:*

OR cpe:/a:hp:network_node_manager_i:9.0:*:*:*:*:*:*:*

OR cpe:/a:hp:network_node_manager_i:8.0:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:20101975	V	CVE-2010-1975	2022-05-20
oval:org.mitre.oval:def:13487	P	USN-942-1 -- postgresql-8.1, postgresql-8.3, postgresql-8.4 vulnerabilities	2014-06-30
oval:org.mitre.oval:def:13636	P	DSA-2051-1 postgresql-8.3 -- several	2014-06-23
oval:org.mitre.oval:def:11655	P	DSA-2051 postgresql-8.3 -- several vulnerabilities	2014-06-23
oval:org.mitre.oval:def:23110	P	ELSA-2010:0430: postgresql84 security update (Moderate)	2014-05-26
oval:org.mitre.oval:def:22939	P	ELSA-2010:0429: postgresql security update (Moderate)	2014-05-26
oval:org.mitre.oval:def:21774	P	RHSA-2010:0429: postgresql security update (Moderate)	2014-02-24
oval:org.mitre.oval:def:22142	P	RHSA-2010:0430: postgresql84 security update (Moderate)	2014-02-24
oval:org.mitre.oval:def:11004	V	PostgreSQL 7.4 before 7.4.29, 8.0 before 8.0.25, 8.1 before 8.1.21, 8.2 before 8.2.17, 8.3 before 8.3.11, and 8.4 before 8.4.4 does not properly check privileges during certain RESET ALL operations, which allows remote authenticated users to remove arbitrary parameter settings via a (1) ALTER USER or (2) ALTER DATABASE statement.	2013-04-29
oval:org.debian:def:2051	V	several vulnerabilities	2010-05-24
oval:com.redhat.rhsa:def:20100428	P	RHSA-2010:0428: postgresql security update (Moderate)	2010-05-19
oval:com.redhat.rhsa:def:20100429	P	RHSA-2010:0429: postgresql security update (Moderate)	2010-05-19
oval:com.redhat.rhsa:def:20100430	P	RHSA-2010:0430: postgresql84 security update (Moderate)	2010-05-19