4

CVE-2007-4772

Exploit
The regular expression parser in TCL before 8.4.17, as used in PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, and 7.4 before 7.4.19, allows context-dependent attackers to cause a denial of service (infinite loop) via a crafted regular expression.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
PostgresqlPostgresql Version >= 7.4 < 7.4.19
PostgresqlPostgresql Version >= 8.0 < 8.0.15
PostgresqlPostgresql Version >= 8.1 < 8.1.11
PostgresqlPostgresql Version >= 8.2 < 8.2.6
DebianDebian Linux Version3.1
CanonicalUbuntu Linux Version6.06 SwEditionlts
CanonicalUbuntu Linux Version6.10
CanonicalUbuntu Linux Version7.04
CanonicalUbuntu Linux Version7.10
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 3.84% 0.888
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 4 8 2.9
AV:N/AC:L/Au:S/C:N/I:N/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705
Third Party Advisory
http://secunia.com/advisories/30535
Third Party Advisory
http://www.securityfocus.com/archive/1/493080/100/0/threaded
Third Party Advisory
VDB Entry
http://www.vmware.com/security/advisories/VMSA-2008-0009.html
Third Party Advisory
http://www.vupen.com/english/advisories/2008/1744
Broken Link
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01420154
Broken Link
http://secunia.com/advisories/28376
Third Party Advisory
http://secunia.com/advisories/28437
Third Party Advisory
http://secunia.com/advisories/28438
Third Party Advisory
http://secunia.com/advisories/28454
Third Party Advisory
http://secunia.com/advisories/28477
Third Party Advisory
http://secunia.com/advisories/28479
Third Party Advisory
http://secunia.com/advisories/28679
Third Party Advisory
http://secunia.com/advisories/29638
Third Party Advisory
http://security.gentoo.org/glsa/glsa-200801-15.xml
Third Party Advisory
http://sunsolve.sun.com/search/document.do?assetkey=1-26-103197-1
Broken Link
http://sunsolve.sun.com/search/document.do?assetkey=1-66-200559-1
Broken Link
http://www.debian.org/security/2008/dsa-1460
Third Party Advisory
http://www.debian.org/security/2008/dsa-1463
Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2008-0038.html
Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2008-0040.html
Third Party Advisory
http://www.vupen.com/english/advisories/2008/0109
Third Party Advisory
http://www.vupen.com/english/advisories/2008/1071/references
Third Party Advisory
https://usn.ubuntu.com/568-1/
Third Party Advisory
http://secunia.com/advisories/29070
Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2008-0134.html
Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00000.html
Third Party Advisory
Mailing List
http://secunia.com/advisories/28359
Third Party Advisory
http://secunia.com/advisories/28455
Third Party Advisory
http://secunia.com/advisories/28464
Third Party Advisory
http://secunia.com/advisories/28698
Third Party Advisory
http://securitytracker.com/id?1019157
Third Party Advisory
VDB Entry
http://sourceforge.net/project/shownotes.php?release_id=565440&group_id=10894
Third Party Advisory
http://sourceforge.net/tracker/index.php?func=detail&aid=1810264&group_id=10894&atid=110894
Third Party Advisory
Exploit
http://www.mandriva.com/security/advisories?name=MDVSA-2008:004
Third Party Advisory
http://www.postgresql.org/about/news.905
Vendor Advisory
http://www.securityfocus.com/archive/1/485864/100/0/threaded
Third Party Advisory
VDB Entry
http://www.securityfocus.com/archive/1/486407/100/0/threaded
Third Party Advisory
VDB Entry
http://www.securityfocus.com/bid/27163
Patch
Third Party Advisory
VDB Entry
http://www.vupen.com/english/advisories/2008/0061
Third Party Advisory
https://issues.rpath.com/browse/RPL-1768
Broken Link
https://www.redhat.com/archives/fedora-package-announce/2008-January/msg00397.html
Third Party Advisory
https://www.redhat.com/archives/fedora-package-announce/2008-January/msg00469.html
Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00049.html
Third Party Advisory
Mailing List
http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00052.html
Third Party Advisory
Mailing List
http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00054.html
Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00056.html
Third Party Advisory
Mailing List
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00016.html
Third Party Advisory
Mailing List
http://rhn.redhat.com/errata/RHSA-2013-0122.html
Third Party Advisory
http://secunia.com/advisories/29248
Third Party Advisory
http://www.mandriva.com/security/advisories?name=MDVSA-2008:059
Third Party Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/39497
Third Party Advisory
VDB Entry
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11569
Third Party Advisory