Superuser Password Exposure in PostgreSQL Graphical Installers

Superuser Password Exposure in PostgreSQL Graphical Installers

CVE-2013-1903 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

PostgreSQL, possibly 9.2.x before 9.2.4, 9.1.x before 9.1.9, 9.0.x before 9.0.13, 8.4.x before 8.4.17, and 8.3.x before 8.3.23 incorrectly provides the superuser password to scripts related to "graphical installers for Linux and Mac OS X," which has unspecified impact and attack vectors.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.