JVN/CVE Demo: Cveinfos

CVE

Id: 29958
CVE No.: CVE-2007-6601
Status: Candidate
Description: The DBLink module in PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, 7.4 before 7.4.19, and 7.3 before 7.3.21, when local trust or ident authentication is used, allows remote attackers to gain privileges via unspecified vectors. NOTE: this issue exists because of an incomplete fix for CVE-2007-3278.
Phase: Assigned (20071231)
Votes: None (candidate not yet proposed)
Comments

Actions

Related CVE References

Id	CVE Id	CVE No.	Reference	Actions
316885	29958	CVE-2007-6601	BUGTRAQ:20080107 PostgreSQL 2007-01-07 Cumulative Security Release	View
316886	29958	CVE-2007-6601	URL:http://www.securityfocus.com/archive/1/archive/1/485864/100/0/threaded	View
316887	29958	CVE-2007-6601	BUGTRAQ:20080115 rPSA-2008-0016-1 postgresql postgresql-server	View
316888	29958	CVE-2007-6601	URL:http://www.securityfocus.com/archive/1/archive/1/486407/100/0/threaded	View
316889	29958	CVE-2007-6601	CONFIRM:http://www.postgresql.org/about/news.905	View
316890	29958	CVE-2007-6601	CONFIRM:https://issues.rpath.com/browse/RPL-1768	View
316891	29958	CVE-2007-6601	DEBIAN:DSA-1460	View
316892	29958	CVE-2007-6601	URL:http://www.debian.org/security/2008/dsa-1460	View
316893	29958	CVE-2007-6601	DEBIAN:DSA-1463	View
316894	29958	CVE-2007-6601	URL:http://www.debian.org/security/2008/dsa-1463	View
316895	29958	CVE-2007-6601	FEDORA:FEDORA-2008-0478	View
316896	29958	CVE-2007-6601	URL:https://www.redhat.com/archives/fedora-package-announce/2008-January/msg00397.html	View
316897	29958	CVE-2007-6601	FEDORA:FEDORA-2008-0552	View
316898	29958	CVE-2007-6601	URL:https://www.redhat.com/archives/fedora-package-announce/2008-January/msg00469.html	View
316899	29958	CVE-2007-6601	GENTOO:GLSA-200801-15	View
316900	29958	CVE-2007-6601	URL:http://security.gentoo.org/glsa/glsa-200801-15.xml	View
316901	29958	CVE-2007-6601	HP:HPSBTU02325	View
316902	29958	CVE-2007-6601	URL:http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01420154	View
316903	29958	CVE-2007-6601	HP:SSRT080006	View
316904	29958	CVE-2007-6601	URL:http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01420154	View
316905	29958	CVE-2007-6601	MANDRIVA:MDVSA-2008:004	View
316906	29958	CVE-2007-6601	URL:http://www.mandriva.com/security/advisories?name=MDVSA-2008:004	View
316907	29958	CVE-2007-6601	REDHAT:RHSA-2008:0038	View
316908	29958	CVE-2007-6601	URL:http://www.redhat.com/support/errata/RHSA-2008-0038.html	View
316909	29958	CVE-2007-6601	REDHAT:RHSA-2008:0039	View
316910	29958	CVE-2007-6601	URL:http://www.redhat.com/support/errata/RHSA-2008-0039.html	View
316911	29958	CVE-2007-6601	REDHAT:RHSA-2008:0040	View
316912	29958	CVE-2007-6601	URL:http://www.redhat.com/support/errata/RHSA-2008-0040.html	View
316913	29958	CVE-2007-6601	SUNALERT:103197	View
316914	29958	CVE-2007-6601	URL:http://sunsolve.sun.com/search/document.do?assetkey=1-26-103197-1	View
316915	29958	CVE-2007-6601	SUNALERT:200559	View
316916	29958	CVE-2007-6601	URL:http://sunsolve.sun.com/search/document.do?assetkey=1-66-200559-1	View
316917	29958	CVE-2007-6601	SUSE:SUSE-SA:2008:005	View
316918	29958	CVE-2007-6601	URL:http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00000.html	View
316919	29958	CVE-2007-6601	UBUNTU:USN-568-1	View
316920	29958	CVE-2007-6601	URL:http://www.ubuntulinux.org/support/documentation/usn/usn-568-1	View
316921	29958	CVE-2007-6601	BID:27163	View
316922	29958	CVE-2007-6601	URL:http://www.securityfocus.com/bid/27163	View
316923	29958	CVE-2007-6601	OVAL:oval:org.mitre.oval:def:11127	View
316924	29958	CVE-2007-6601	URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:11127	View
316925	29958	CVE-2007-6601	VUPEN:ADV-2008-0061	View
316926	29958	CVE-2007-6601	URL:http://www.vupen.com/english/advisories/2008/0061	View
316927	29958	CVE-2007-6601	VUPEN:ADV-2008-0109	View
316928	29958	CVE-2007-6601	URL:http://www.vupen.com/english/advisories/2008/0109	View
316929	29958	CVE-2007-6601	VUPEN:ADV-2008-1071	View
316930	29958	CVE-2007-6601	URL:http://www.vupen.com/english/advisories/2008/1071/references	View
316931	29958	CVE-2007-6601	SECTRACK:1019157	View
316932	29958	CVE-2007-6601	URL:http://securitytracker.com/id?1019157	View
316933	29958	CVE-2007-6601	SECUNIA:28359	View
316934	29958	CVE-2007-6601	URL:http://secunia.com/advisories/28359	View
316935	29958	CVE-2007-6601	SECUNIA:28376	View
316936	29958	CVE-2007-6601	URL:http://secunia.com/advisories/28376	View
316937	29958	CVE-2007-6601	SECUNIA:28438	View
316938	29958	CVE-2007-6601	URL:http://secunia.com/advisories/28438	View
316939	29958	CVE-2007-6601	SECUNIA:28445	View
316940	29958	CVE-2007-6601	URL:http://secunia.com/advisories/28445	View
316941	29958	CVE-2007-6601	SECUNIA:28437	View
316942	29958	CVE-2007-6601	URL:http://secunia.com/advisories/28437	View
316943	29958	CVE-2007-6601	SECUNIA:28454	View
316944	29958	CVE-2007-6601	URL:http://secunia.com/advisories/28454	View
316945	29958	CVE-2007-6601	SECUNIA:28464	View
316946	29958	CVE-2007-6601	URL:http://secunia.com/advisories/28464	View
316947	29958	CVE-2007-6601	SECUNIA:28477	View
316948	29958	CVE-2007-6601	URL:http://secunia.com/advisories/28477	View
316949	29958	CVE-2007-6601	SECUNIA:28479	View
316950	29958	CVE-2007-6601	URL:http://secunia.com/advisories/28479	View
316951	29958	CVE-2007-6601	SECUNIA:28455	View
316952	29958	CVE-2007-6601	URL:http://secunia.com/advisories/28455	View
316953	29958	CVE-2007-6601	SECUNIA:28679	View
316954	29958	CVE-2007-6601	URL:http://secunia.com/advisories/28679	View
316955	29958	CVE-2007-6601	SECUNIA:28698	View
316956	29958	CVE-2007-6601	URL:http://secunia.com/advisories/28698	View
316957	29958	CVE-2007-6601	SECUNIA:29638	View
316958	29958	CVE-2007-6601	URL:http://secunia.com/advisories/29638	View
316959	29958	CVE-2007-6601	XF:postgresql-dblink-privilege-escalation(39500)	View

Related JVN

Id	JVN No.	Title	Summary	CVE No.	CVE Id	CVSS_v2	CVSS_v3	JVN URL	Actions
56092	JVNDB-2007-004784	Hot or Not Clone における管理者ユーザ名およびパスワードを取得される脆弱性	Hot or Not Clone には、データベースバックアップの作成と読み取りに対するアクセスコントロールが不十分なため、管理者ユーザ名およびパスワードを取得される脆弱性が存在します。	CVE-2007-6603	29958	5		http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-004784.html	View

Message	Memory use
Component initialization	1.39 MB
Controller action start	1.49 MB
Controller render start	2.38 MB
View render complete	2.91 MB

Message	Time in ms	Graph
Core Processing (Derived from $_SERVER["REQUEST_TIME"])	3.27
Event: Controller.initialize	0.02
Event: Controller.startup	0.07
Controller action	404.56
Event: Controller.beforeRender	5.74
» Processing toolbar data	5.65
Rendering View	21.60
» Event: View.beforeRender	0.02
» Rendering APP/View/Cveinfos/view.ctp	20.52
» Event: View.afterRender	0.02
» Event: View.beforeLayout	0.02
» Rendering APP/View/Layouts/default.ctp	0.60
» » Rendering CORE/Cake/View/Elements/sql_dump.ctp	0.11
Event: View.afterLayout	0.00

Constant	Value
APP	/virtual/inogo77/public_html/jvn/app/
APP_DIR	app
APPLIBS	/virtual/inogo77/public_html/jvn/app/Lib/
CACHE	/virtual/inogo77/public_html/jvn/app/tmp/cache/
CAKE	/virtual/inogo77/public_html/jvn/lib/Cake/
CAKE_CORE_INCLUDE_PATH	/virtual/inogo77/public_html/jvn/lib
CORE_PATH	/virtual/inogo77/public_html/jvn/lib/
CAKE_VERSION	2.6.0
CSS	/virtual/inogo77/public_html/jvn/app/webroot/css/
CSS_URL	css/
DS	/
FULL_BASE_URL	http://inogo77.s500.xrea.com
IMAGES	/virtual/inogo77/public_html/jvn/app/webroot/img/
IMAGES_URL	img/
JS	/virtual/inogo77/public_html/jvn/app/webroot/js/
JS_URL	js/
LOGS	/virtual/inogo77/public_html/jvn/app/tmp/logs/
ROOT	/virtual/inogo77/public_html/jvn
TESTS	/virtual/inogo77/public_html/jvn/app/Test/
TMP	/virtual/inogo77/public_html/jvn/app/tmp/
VENDORS	/virtual/inogo77/public_html/jvn/vendors/
WEBROOT_DIR	webroot
WWW_ROOT	/virtual/inogo77/public_html/jvn/app/webroot/

Environment Variable	Value
Php Version	5.6.40
Phprc	php56.ini
Php Fcgi Children	1
Pwd	/virtual/inogo77/public_html/.fast-cgi-bin
Php Fcgi Max Requests	10000
Shlvl	0
Path	/usr/local/rvm/gems/ruby-3.0.2/bin:/usr/local/rvm/gems/ruby-3.0.2@global/bin:/usr/local/rvm/rubies/ruby-3.0.2/bin:/usr/share/Modules/bin:/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/usr/local/rvm/bin:/var/lib/snapd/snap/bin:/root/bin:/sbin:/usr/local/bin
Script Name	/jvn/app/webroot/index.php
Request Uri	/jvn/cveinfos/view/29958
Query String
Request Method	GET
Server Protocol	HTTP/1.1
Gateway Interface	CGI/1.1
Redirect Url	/jvn/app/webroot/cveinfos/view/29958
Remote Port	8190
Script Filename	/virtual/inogo77/public_html/jvn/app/webroot/index.php
Server Admin	[no address given]
Context Document Root	/virtual/inogo77/public_html
Context Prefix
Request Scheme	http
Document Root	/virtual/inogo77/public_html
Remote Addr	216.73.216.148
Server Port	80
Server Addr	160.251.151.205
Server Name	inogo77.s500.xrea.com
Server Software	Apache
Server Signature
Ld Library Path	/usr/local/apache24/lib
Http Connection	close
Http Cache Control	max-age=259200
Http X Forwarded For	10.3.154.232
Http Via	1.1 squid-proxy-75b5465b89-474wh (squid/6.10)
Http Host	inogo77.s500.xrea.com
Http Accept Encoding	gzip, br, zstd, deflate
Http Cookie	advanced-frontend=k36urh5s3u6sndv5uop9n3r446
Http User Agent	Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)
Http Accept	/
Gem Home	/usr/local/rvm/gems/ruby-2.3.0
X Dostranslated Ip	216.73.216.148
Mm Country Code	US
Mmdb Info	result found
Mmdb Addr	216.73.216.148
Unique Id	aC-TxbFxegt0g5JFRdZXjwAAABs
Redirect Status	200
Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect X Dostranslated Ip	216.73.216.148
Redirect Mm Country Code	US
Redirect Mmdb Info	result found
Redirect Mmdb Addr	216.73.216.148
Redirect Unique Id	aC-TxbFxegt0g5JFRdZXjwAAABs
Redirect Redirect Status	200
Redirect Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect Redirect X Dostranslated Ip	216.73.216.148
Redirect Redirect Mm Country Code	US
Redirect Redirect Mmdb Info	result found
Redirect Redirect Mmdb Addr	216.73.216.148
Redirect Redirect Unique Id	aC-TxbFxegt0g5JFRdZXjwAAABs
Fcgi Role	RESPONDER
Php Self	/jvn/app/webroot/index.php
Request Time Float	1747948486.3313
Request Time	1747948486

CVE

Actions

Related CVE References

Related JVN

Request History

Session

Request

Cake Params

Post data

Query string

Cookie

Current Route

Sql Logs

default

Memory

Timers

Logs

View Variables

App Constants

CakePHP Constants

PHP Environment

Included Files

Include Paths

Included Files