Postgresql Privilege Escalation and Denial of Service ...
|
Two vulnerabilities were identified in PostgreSQL, which could be exploited by malicious users to cause a denial of service or obtain elevated privileges.
The first flaw is due to an error in the "SET ROLE" command when restoring the previous role setting after an error, which could be exploited by malicious authenticated users to gain superuser privileges.
The second issue is due to an error in the "SET SESSION AUTHORIZATION" command when the application has been compiled with Asserts enabled, which could be exploited by malicious users to cause a denial of service.
|
|
Full Story |
This topic does not have any threads posted yet!
You cannot post until you login.
