Search for vulnerabilities
Vulnerability details: VCID-8egf-4d5f-aaar
Vulnerability ID VCID-8egf-4d5f-aaar
Aliases CVE-2005-0244
Summary PostgreSQL 8.0.0 and earlier allows local users to bypass the EXECUTE permission check for functions by using the CREATE AGGREGATE command.
Status Published
Exploitability 0.5
Weighted Severity 8.0
Risk 4.0
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-264 Permissions, Privileges, and Access Controls
System Score Found at
rhas Important https://access.redhat.com/errata/RHSA-2005:138
rhas Important https://access.redhat.com/errata/RHSA-2005:141
epss 0.00237 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00237 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00237 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00237 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.00975 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
epss 0.01823 https://api.first.org/data/v1/epss?cve=CVE-2005-0244
rhbs medium https://bugzilla.redhat.com/show_bug.cgi?id=1617505
cvssv2 6.5 https://nvd.nist.gov/vuln/detail/CVE-2005-0244
Reference id Reference type URL
http://archives.postgresql.org/pgsql-hackers/2005-01/msg00922.php
http://marc.info/?l=bugtraq&m=110806034116082&w=2
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-0244.json
https://api.first.org/data/v1/epss?cve=CVE-2005-0244
http://secunia.com/advisories/12948
https://exchange.xforce.ibmcloud.com/vulnerabilities/19184
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10927
https://www.postgresql.org/support/security/CVE-2005-0244/
http://www.mandriva.com/security/advisories?name=MDKSA-2005:040
http://www.novell.com/linux/security/advisories/2005_36_sudo.html
http://www.redhat.com/support/errata/RHSA-2005-138.html
http://www.securityfocus.com/bid/12417
1617505 https://bugzilla.redhat.com/show_bug.cgi?id=1617505
cpe:2.3:a:postgresql:postgresql:7.2:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:7.2:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:7.2.1:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:7.2.1:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:7.2.2:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:7.2.2:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:7.2.3:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:7.2.3:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:7.2.4:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:7.2.4:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:7.2.5:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:7.2.5:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:7.2.6:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:7.2.6:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:7.2.7:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:7.2.7:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:7.3:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:7.3:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:7.3.1:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:7.3.1:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:7.3.2:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:7.3.2:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:7.3.3:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:7.3.3:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:7.3.4:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:7.3.4:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:7.3.5:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:7.3.5:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:7.3.6:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:7.3.6:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:7.3.7:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:7.3.7:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:7.3.8:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:7.3.8:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:7.3.9:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:7.3.9:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:7.4:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:7.4:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:7.4.1:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:7.4.1:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:7.4.2:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:7.4.2:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:7.4.3:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:7.4.3:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:7.4.4:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:7.4.4:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:7.4.5:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:7.4.5:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:7.4.6:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:7.4.6:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:7.4.7:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:7.4.7:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:8.0.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:8.0.0:*:*:*:*:*:*:*
CVE-2005-0244 https://nvd.nist.gov/vuln/detail/CVE-2005-0244
RHSA-2005:138 https://access.redhat.com/errata/RHSA-2005:138
RHSA-2005:141 https://access.redhat.com/errata/RHSA-2005:141
USN-79-1 https://usn.ubuntu.com/79-1/
No exploits are available.
Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P Found at https://nvd.nist.gov/vuln/detail/CVE-2005-0244
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Exploit Prediction Scoring System (EPSS)
Percentile 0.61334
EPSS Score 0.00237
Published At Dec. 17, 2024, midnight
Date Actor Action Source VulnerableCode Version
There are no relevant records.