PostgreSQL Character Set Conversion Privilege Escalation Vulnerability

Bugtraq ID:	13476
Class:	Design Error
CVE:	CVE-2005-1409
Remote:	Yes
Local:	No
Published:	May 03 2005 12:00AM
Updated:	Mar 01 2007 08:16PM
Credit:	Announced by the vendor.
Vulnerable:	Trustix Secure Enterprise Linux 2.0 SGI ProPack 3.0 SGI Advanced Linux Environment 3.0 RedHat Linux 9.0 i386 RedHat Fedora Core2 RedHat Fedora Core1 RedHat Enterprise Linux WS 4 RedHat Enterprise Linux WS 3 RedHat Enterprise Linux ES 4 RedHat Enterprise Linux ES 3 RedHat Enterprise Linux AS 4 RedHat Enterprise Linux AS 3 RedHat Desktop 4.0 RedHat Desktop 3.0 PostgreSQL PostgreSQL 8.0.2 + Trustix Secure Linux 2.2 PostgreSQL PostgreSQL 8.0.1 PostgreSQL PostgreSQL 8.0 + Trustix Secure Linux 2.2 PostgreSQL PostgreSQL 7.4.7 + Gentoo Linux + S.u.S.E. Linux Personal 9.2 x86_64 + S.u.S.E. Linux Personal 9.2 + S.u.S.E. Linux Personal 9.1 x86_64 + S.u.S.E. Linux Personal 9.1 + Trustix Secure Linux 2.1 + Ubuntu Ubuntu Linux 5.0 4 powerpc + Ubuntu Ubuntu Linux 5.0 4 i386 + Ubuntu Ubuntu Linux 5.0 4 amd64 PostgreSQL PostgreSQL 7.4.6 + Trustix Secure Linux 2.1 PostgreSQL PostgreSQL 7.4.5 + Turbolinux Appliance Server 1.0 Workgroup Edition + Turbolinux Appliance Server 1.0 Hosting Edition + Turbolinux Appliance Server Hosting Edition 1.0 + Turbolinux Appliance Server Workgroup Edition 1.0 + Turbolinux Home + Turbolinux Turbolinux Desktop 10.0 + Turbolinux Turbolinux Server 10.0 + Turbolinux Turbolinux Server 9.0 + Turbolinux Turbolinux Server 8.0 + Turbolinux Turbolinux Server 7.0 + Turbolinux Turbolinux Workstation 8.0 + Turbolinux Turbolinux Workstation 7.0 + Ubuntu Ubuntu Linux 4.1 ppc + Ubuntu Ubuntu Linux 4.1 ia64 + Ubuntu Ubuntu Linux 4.1 ia32 PostgreSQL PostgreSQL 7.4.3 PostgreSQL PostgreSQL 7.4 PostgreSQL PostgreSQL 7.3.9 + RedHat Desktop 3.0 + RedHat Enterprise Linux AS 3 + RedHat Enterprise Linux ES 3 + RedHat Enterprise Linux WS 3 + S.u.S.E. Linux Personal 9.0 x86_64 + S.u.S.E. Linux Personal 9.0 + S.u.S.E. Linux Personal 8.2 PostgreSQL PostgreSQL 7.3.8 + Trustix Secure Linux 2.0 PostgreSQL PostgreSQL 7.3.6 PostgreSQL PostgreSQL 7.3.4 + OpenPKG OpenPKG Current PostgreSQL PostgreSQL 7.3.3 + OpenPKG OpenPKG Current PostgreSQL PostgreSQL 7.3.2 + Conectiva Linux 9.0 PostgreSQL PostgreSQL 7.3.1 + OpenPKG OpenPKG 1.2 PostgreSQL PostgreSQL 7.3 PostgreSQL PostgreSQL 7.2.7 + S.u.S.E. Linux 8.1 PostgreSQL PostgreSQL 7.2.4 + RedHat Linux 8.0 + RedHat Linux 7.3 PostgreSQL PostgreSQL 7.2.3 PostgreSQL PostgreSQL 7.2.2 + MandrakeSoft Linux Mandrake 9.0 + Turbolinux Turbolinux Server 8.0 + Turbolinux Turbolinux Server 7.0 + Turbolinux Turbolinux Workstation 8.0 PostgreSQL PostgreSQL 7.2.1 + Conectiva Linux 8.0 + Debian Linux 3.0 sparc + Debian Linux 3.0 s/390 + Debian Linux 3.0 ppc + Debian Linux 3.0 mipsel + Debian Linux 3.0 mips + Debian Linux 3.0 m68k + Debian Linux 3.0 ia-64 + Debian Linux 3.0 ia-32 + Debian Linux 3.0 hppa + Debian Linux 3.0 arm + Debian Linux 3.0 alpha + Debian Linux 3.0 + Gentoo Linux 0.7 + Gentoo Linux 0.5 PostgreSQL PostgreSQL 7.2 + MandrakeSoft Linux Mandrake 8.2 ppc + MandrakeSoft Linux Mandrake 8.2 + S.u.S.E. Linux 8.0 i386 + S.u.S.E. Linux 8.0 PostgreSQL PostgreSQL 7.1.3 + Conectiva Linux 7.0 + RedHat Linux 7.2 + S.u.S.E. Linux 7.3 sparc + S.u.S.E. Linux 7.3 ppc + S.u.S.E. Linux 7.3 i386 + S.u.S.E. Linux 7.3 + Trustix Secure Linux 1.5 + Trustix Secure Linux 1.2 + Trustix Secure Linux 1.1 PostgreSQL PostgreSQL 7.1.2 + MandrakeSoft Linux Mandrake 8.1 ia64 + MandrakeSoft Linux Mandrake 8.1 PostgreSQL PostgreSQL 7.1.1 PostgreSQL PostgreSQL 7.1 PostgreSQL PostgreSQL 7.0.3 + Conectiva Linux 6.0 + MandrakeSoft Linux Mandrake 8.0 ppc + MandrakeSoft Linux Mandrake 8.0 + S.u.S.E. Linux 7.1 x86 + S.u.S.E. Linux 7.1 sparc + S.u.S.E. Linux 7.1 ppc + S.u.S.E. Linux 7.1 alpha + S.u.S.E. Linux 7.1 PostgreSQL PostgreSQL 7.0.2 + MandrakeSoft Linux Mandrake 7.2 + MandrakeSoft Single Network Firewall 7.2 + Wirex Immunix OS 7.0 + Wirex Immunix OS 7+ PostgreSQL PostgreSQL 6.5.3 + Wirex Immunix OS 6.2 PostgreSQL PostgreSQL 6.3.2 Gentoo Linux Conectiva Linux 10.0

Not Vulnerable: