CVE-2007-6600

CVE-2007-6600 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:P

PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, 7.4 before 7.4.19, and 7.3 before 7.3.21 uses superuser privileges instead of table owner privileges for (1) VACUUM and (2) ANALYZE operations within index functions, and supports (3) SET ROLE and (4) SET SESSION AUTHORIZATION within index functions, which allows remote authenticated users to gain privileges.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.