• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

PostgreSQL Multiple Local Denial of Service Vulnerabilities

Bugtraq ID:	20717
Class:	Failure to Handle Exceptional Conditions
CVE:	CVE-2006-5540 CVE-2006-5541 CVE-2006-5542
Remote:	No
Local:	Yes
Published:	Oct 24 2006 12:00AM
Updated:	Nov 15 2007 12:38AM
Credit:	Michael Fuhr, Josh Drake, Alvaro Herrera, and Sergey Koposov are credited with the discovery of these vulnerabilities.
Vulnerable:	Ubuntu Ubuntu Linux 6.10 sparc Ubuntu Ubuntu Linux 6.10 powerpc Ubuntu Ubuntu Linux 6.10 i386 Ubuntu Ubuntu Linux 6.10 amd64 Ubuntu Ubuntu Linux 6.06 LTS sparc Ubuntu Ubuntu Linux 6.06 LTS powerpc Ubuntu Ubuntu Linux 6.06 LTS i386 Ubuntu Ubuntu Linux 6.06 LTS amd64 Turbolinux Turbolinux Server 10.0 x86 Turbolinux Turbolinux Server 10.0 Turbolinux Appliance Server 2.0 Trustix Secure Linux 3.0 Trustix Secure Linux 2.2 Trustix Operating System Enterprise Server 2.0 SGI ProPack 3.0 SP6 S.u.S.E. SUSE Linux Enterprise Server 10 S.u.S.E. SUSE CORE 9 for x86 S.u.S.E. SLE SDK 10 S.u.S.E. Open-Enterprise-Server 0 S.u.S.E. Novell Linux POS 9 S.u.S.E. Novell Linux Desktop 9 S.u.S.E. Linux Professional 10.0 OSS S.u.S.E. Linux Professional 9.3 x86_64 S.u.S.E. Linux Professional 9.3 S.u.S.E. Linux Personal 10.0 OSS S.u.S.E. Linux Personal 9.3 x86_64 S.u.S.E. Linux Personal 9.3 S.u.S.E. Linux Enterprise Server 9 S.u.S.E. Linux Enterprise Server 10 RedHat Enterprise Linux WS 4 RedHat Enterprise Linux WS 3 RedHat Enterprise Linux ES 4 RedHat Enterprise Linux ES 3 RedHat Enterprise Linux Desktop Workstation 5 client RedHat Enterprise Linux Desktop 5 client RedHat Enterprise Linux AS 4 RedHat Enterprise Linux AS 3 RedHat Enterprise Linux 5 server RedHat Desktop 4.0 RedHat Desktop 3.0 PostgreSQL PostgreSQL 8.1.4 PostgreSQL PostgreSQL 8.1.3 PostgreSQL PostgreSQL 8.1.1 PostgreSQL PostgreSQL 8.0.8 PostgreSQL PostgreSQL 8.0.7 PostgreSQL PostgreSQL 8.0.5 PostgreSQL PostgreSQL 8.0.4 PostgreSQL PostgreSQL 8.0.3 PostgreSQL PostgreSQL 8.0.2 + Trustix Secure Linux 2.2 PostgreSQL PostgreSQL 8.0.1 PostgreSQL PostgreSQL 8.0 + Trustix Secure Linux 2.2 PostgreSQL PostgreSQL 7.4.13 PostgreSQL PostgreSQL 7.4.12 PostgreSQL PostgreSQL 7.4.11 PostgreSQL PostgreSQL 7.4.10 PostgreSQL PostgreSQL 7.4.9 PostgreSQL PostgreSQL 7.4.8 PostgreSQL PostgreSQL 7.4.7 PostgreSQL PostgreSQL 7.4.6 + Trustix Secure Linux 2.1 PostgreSQL PostgreSQL 7.4.5 PostgreSQL PostgreSQL 7.4.4 PostgreSQL PostgreSQL 7.4.3 PostgreSQL PostgreSQL 7.4.2 PostgreSQL PostgreSQL 7.4.1 PostgreSQL PostgreSQL 7.4 PostgreSQL PostgreSQL 7.3.15 PostgreSQL PostgreSQL 7.3.14 PostgreSQL PostgreSQL 7.3.13 PostgreSQL PostgreSQL 7.3.12 PostgreSQL PostgreSQL 7.3.11 PostgreSQL PostgreSQL 7.3.10 PostgreSQL PostgreSQL 7.3.9 + RedHat Desktop 3.0 + RedHat Enterprise Linux AS 3 + RedHat Enterprise Linux ES 3 + RedHat Enterprise Linux WS 3 + S.u.S.E. Linux Personal 9.0 x86_64 + S.u.S.E. Linux Personal 9.0 + S.u.S.E. Linux Personal 8.2 PostgreSQL PostgreSQL 7.3.8 PostgreSQL PostgreSQL 7.3.6 PostgreSQL PostgreSQL 7.3.4 + OpenPKG OpenPKG Current PostgreSQL PostgreSQL 7.3.3 + OpenPKG OpenPKG Current PostgreSQL PostgreSQL 7.3.2 + Conectiva Linux 9.0 PostgreSQL PostgreSQL 7.3.1 + OpenPKG OpenPKG 1.2 PostgreSQL PostgreSQL 7.3 PostgreSQL PostgreSQL 7.2.7 PostgreSQL PostgreSQL 7.2.4 + RedHat Linux 8.0 + RedHat Linux 7.3 PostgreSQL PostgreSQL 7.2.3 PostgreSQL PostgreSQL 7.2.2 + MandrakeSoft Linux Mandrake 9.0 + Turbolinux Turbolinux Server 8.0 + Turbolinux Turbolinux Server 7.0 + Turbolinux Turbolinux Workstation 8.0 PostgreSQL PostgreSQL 7.2.1 + Conectiva Linux 8.0 + Debian Linux 3.0 sparc + Debian Linux 3.0 s/390 + Debian Linux 3.0 ppc + Debian Linux 3.0 mipsel + Debian Linux 3.0 mips + Debian Linux 3.0 m68k + Debian Linux 3.0 ia-64 + Debian Linux 3.0 ia-32 + Debian Linux 3.0 hppa + Debian Linux 3.0 arm + Debian Linux 3.0 alpha + Debian Linux 3.0 + Gentoo Linux 0.7 + Gentoo Linux 0.5 PostgreSQL PostgreSQL 7.2 + MandrakeSoft Linux Mandrake 8.2 ppc + MandrakeSoft Linux Mandrake 8.2 + S.u.S.E. Linux 8.0 i386 + S.u.S.E. Linux 8.0 PostgreSQL PostgreSQL 7.1.3 PostgreSQL PostgreSQL 7.1.2 + MandrakeSoft Linux Mandrake 8.1 ia64 + MandrakeSoft Linux Mandrake 8.1 PostgreSQL PostgreSQL 7.1.1 PostgreSQL PostgreSQL 7.1 PostgreSQL PostgreSQL 7.0.3 PostgreSQL PostgreSQL 7.0.2 + MandrakeSoft Linux Mandrake 7.2 + MandrakeSoft Single Network Firewall 7.2 + Wirex Immunix OS 7.0 + Wirex Immunix OS 7+ PostgreSQL PostgreSQL 6.5.3 + Wirex Immunix OS 6.2 PostgreSQL PostgreSQL 6.3.2 PDGSoft Shopping Cart 8.1.2 PDGSoft Shopping Cart 8.1 PDGSoft Shopping Cart 8.0.6 MandrakeSoft Linux Mandrake 2006.0 x86_64 MandrakeSoft Linux Mandrake 2006.0 MandrakeSoft Linux Mandrake 2007.0 x86_64 MandrakeSoft Linux Mandrake 2007.0 MandrakeSoft Corporate Server 4.0 x86_64 MandrakeSoft Corporate Server 3.0 x86_64 MandrakeSoft Corporate Server 3.0 MandrakeSoft Corporate Server 4.0 Avaya Integrated Management Avaya CVLAN
Not Vulnerable:	PostgreSQL PostgreSQL 8.1.5 PostgreSQL PostgreSQL 8.0.9 PostgreSQL PostgreSQL 7.4.14 PostgreSQL PostgreSQL 7.3.16