Vulnerability Details : CVE-2017-12172

PostgreSQL 10.x before 10.1, 9.6.x before 9.6.6, 9.5.x before 9.5.10, 9.4.x before 9.4.15, 9.3.x before 9.3.20, and 9.2.x before 9.2.24 runs under a non-root operating system account, and database superusers have effective ability to run arbitrary code under that system account. PostgreSQL provides a script for starting the database server during system boot. Packages of PostgreSQL for many operating systems provide their own, packager-authored startup implementations. Several implementations use a log file name that the database superuser can replace with a symbolic link. As root, they open(), chmod() and/or chown() this log file name. This often suffices for the database superuser to escalate to root privileges when root starts the server.
Publish Date : 2017-11-22 Last Update Date : 2019-10-09

Collapse All Expand All Select Select&Copy	Scroll To Vendor Statements(0) Additional Vendor Data(0) OVAL Definitions(0) Vulnerable Products(0) # Of Vulns By Products References(0) Metasploit Modules(0)	Comments View User Comments Add Comment	External Links Secunia Advisories XForce Advisories Vulnerability Details at NVD Vulnerability Details at Mitre Nessus Plugins Linux Kernel Git Repository First CVSS Guide
Search Twitter Search YouTube Search Google

- CVSS Scores & Vulnerability Types

CVSS Score	7.2
Confidentiality Impact	Complete (There is total information disclosure, resulting in all system files being revealed.)
Integrity Impact	Complete (There is a total compromise of system integrity. There is a complete loss of system protection, resulting in the entire system being compromised.)
Availability Impact	Complete (There is a total shutdown of the affected resource. The attacker can render the resource completely unavailable.)
Access Complexity	Low (Specialized access conditions or extenuating circumstances do not exist. Very little knowledge or skill is required to exploit. )
Authentication	Not required (Authentication is not required to exploit the vulnerability.)
Gained Access	None
Vulnerability Type(s)
CWE ID	59

- Related OVAL Definitions

Title	Definition Id	Class	Family
RHSA-2017:3402: postgresql security update (Moderate)	oval:com.redhat.rhsa:def:20173402		unix

OVAL (Open Vulnerability and Assessment Language) definitions define exactly what should be done to verify a vulnerability or a missing patch. Check out the OVAL definitions if you want to learn what you should do to verify a vulnerability.

- Products Affected By CVE-2017-12172

#	Product Type	Vendor	Product	Version	Update	Edition	Language
1	Application	Postgresql	Postgresql	9.2	*	*	*	Version Details Vulnerabilities
2	Application	Postgresql	Postgresql	9.2.1	*	*	*	Version Details Vulnerabilities
3	Application	Postgresql	Postgresql	9.2.2	*	*	*	Version Details Vulnerabilities
4	Application	Postgresql	Postgresql	9.2.3	*	*	*	Version Details Vulnerabilities
5	Application	Postgresql	Postgresql	9.2.4	*	*	*	Version Details Vulnerabilities
6	Application	Postgresql	Postgresql	9.2.5	*	*	*	Version Details Vulnerabilities
7	Application	Postgresql	Postgresql	9.2.6	*	*	*	Version Details Vulnerabilities
8	Application	Postgresql	Postgresql	9.2.7	*	*	*	Version Details Vulnerabilities
9	Application	Postgresql	Postgresql	9.2.8	*	*	*	Version Details Vulnerabilities
10	Application	Postgresql	Postgresql	9.2.9	*	*	*	Version Details Vulnerabilities
11	Application	Postgresql	Postgresql	9.2.10	*	*	*	Version Details Vulnerabilities
12	Application	Postgresql	Postgresql	9.2.11	*	*	*	Version Details Vulnerabilities
13	Application	Postgresql	Postgresql	9.2.12	*	*	*	Version Details Vulnerabilities
14	Application	Postgresql	Postgresql	9.2.13	*	*	*	Version Details Vulnerabilities
15	Application	Postgresql	Postgresql	9.2.14	*	*	*	Version Details Vulnerabilities
16	Application	Postgresql	Postgresql	9.2.15	*	*	*	Version Details Vulnerabilities
17	Application	Postgresql	Postgresql	9.2.16	*	*	*	Version Details Vulnerabilities
18	Application	Postgresql	Postgresql	9.2.17	*	*	*	Version Details Vulnerabilities
19	Application	Postgresql	Postgresql	9.2.18	*	*	*	Version Details Vulnerabilities
20	Application	Postgresql	Postgresql	9.2.19	*	*	*	Version Details Vulnerabilities
21	Application	Postgresql	Postgresql	9.2.20	*	*	*	Version Details Vulnerabilities
22	Application	Postgresql	Postgresql	9.2.21	*	*	*	Version Details Vulnerabilities
23	Application	Postgresql	Postgresql	9.2.22	*	*	*	Version Details Vulnerabilities
24	Application	Postgresql	Postgresql	9.2.23	*	*	*	Version Details Vulnerabilities
25	Application	Postgresql	Postgresql	9.3	*	*	*	Version Details Vulnerabilities
26	Application	Postgresql	Postgresql	9.3.1	*	*	*	Version Details Vulnerabilities
27	Application	Postgresql	Postgresql	9.3.2	*	*	*	Version Details Vulnerabilities
28	Application	Postgresql	Postgresql	9.3.3	*	*	*	Version Details Vulnerabilities
29	Application	Postgresql	Postgresql	9.3.4	*	*	*	Version Details Vulnerabilities
30	Application	Postgresql	Postgresql	9.3.5	*	*	*	Version Details Vulnerabilities
31	Application	Postgresql	Postgresql	9.3.6	*	*	*	Version Details Vulnerabilities
32	Application	Postgresql	Postgresql	9.3.7	*	*	*	Version Details Vulnerabilities
33	Application	Postgresql	Postgresql	9.3.8	*	*	*	Version Details Vulnerabilities
34	Application	Postgresql	Postgresql	9.3.9	*	*	*	Version Details Vulnerabilities
35	Application	Postgresql	Postgresql	9.3.10	*	*	*	Version Details Vulnerabilities
36	Application	Postgresql	Postgresql	9.3.11	*	*	*	Version Details Vulnerabilities
37	Application	Postgresql	Postgresql	9.3.12	*	*	*	Version Details Vulnerabilities
38	Application	Postgresql	Postgresql	9.3.13	*	*	*	Version Details Vulnerabilities
39	Application	Postgresql	Postgresql	9.3.14	*	*	*	Version Details Vulnerabilities
40	Application	Postgresql	Postgresql	9.3.15	*	*	*	Version Details Vulnerabilities
41	Application	Postgresql	Postgresql	9.3.16	*	*	*	Version Details Vulnerabilities
42	Application	Postgresql	Postgresql	9.3.17	*	*	*	Version Details Vulnerabilities
43	Application	Postgresql	Postgresql	9.3.18	*	*	*	Version Details Vulnerabilities
44	Application	Postgresql	Postgresql	9.3.19	*	*	*	Version Details Vulnerabilities
45	Application	Postgresql	Postgresql	9.4	*	*	*	Version Details Vulnerabilities
46	Application	Postgresql	Postgresql	9.4.1	*	*	*	Version Details Vulnerabilities
47	Application	Postgresql	Postgresql	9.4.2	*	*	*	Version Details Vulnerabilities
48	Application	Postgresql	Postgresql	9.4.3	*	*	*	Version Details Vulnerabilities
49	Application	Postgresql	Postgresql	9.4.4	*	*	*	Version Details Vulnerabilities
50	Application	Postgresql	Postgresql	9.4.5	*	*	*	Version Details Vulnerabilities
51	Application	Postgresql	Postgresql	9.4.6	*	*	*	Version Details Vulnerabilities
52	Application	Postgresql	Postgresql	9.4.7	*	*	*	Version Details Vulnerabilities
53	Application	Postgresql	Postgresql	9.4.8	*	*	*	Version Details Vulnerabilities
54	Application	Postgresql	Postgresql	9.4.9	*	*	*	Version Details Vulnerabilities
55	Application	Postgresql	Postgresql	9.4.10	*	*	*	Version Details Vulnerabilities
56	Application	Postgresql	Postgresql	9.4.11	*	*	*	Version Details Vulnerabilities
57	Application	Postgresql	Postgresql	9.4.12	*	*	*	Version Details Vulnerabilities
58	Application	Postgresql	Postgresql	9.4.13	*	*	*	Version Details Vulnerabilities
59	Application	Postgresql	Postgresql	9.4.14	*	*	*	Version Details Vulnerabilities
60	Application	Postgresql	Postgresql	9.5	*	*	*	Version Details Vulnerabilities
61	Application	Postgresql	Postgresql	9.5.1	*	*	*	Version Details Vulnerabilities
62	Application	Postgresql	Postgresql	9.5.2	*	*	*	Version Details Vulnerabilities
63	Application	Postgresql	Postgresql	9.5.3	*	*	*	Version Details Vulnerabilities
64	Application	Postgresql	Postgresql	9.5.4	*	*	*	Version Details Vulnerabilities
65	Application	Postgresql	Postgresql	9.5.5	*	*	*	Version Details Vulnerabilities
66	Application	Postgresql	Postgresql	9.5.6	*	*	*	Version Details Vulnerabilities
67	Application	Postgresql	Postgresql	9.5.7	*	*	*	Version Details Vulnerabilities
68	Application	Postgresql	Postgresql	9.5.8	*	*	*	Version Details Vulnerabilities
69	Application	Postgresql	Postgresql	9.5.9	*	*	*	Version Details Vulnerabilities
70	Application	Postgresql	Postgresql	9.6	*	*	*	Version Details Vulnerabilities
71	Application	Postgresql	Postgresql	9.6.1	*	*	*	Version Details Vulnerabilities
72	Application	Postgresql	Postgresql	9.6.2	*	*	*	Version Details Vulnerabilities
73	Application	Postgresql	Postgresql	9.6.3	*	*	*	Version Details Vulnerabilities
74	Application	Postgresql	Postgresql	9.6.4	*	*	*	Version Details Vulnerabilities
75	Application	Postgresql	Postgresql	9.6.5	*	*	*	Version Details Vulnerabilities
76	Application	Postgresql	Postgresql	10	*	*	*	Version Details Vulnerabilities

- Number Of Affected Versions By Product

Vendor	Product	Vulnerable Versions
Postgresql	Postgresql	76

- References For CVE-2017-12172

https://access.redhat.com/errata/RHSA-2017:3402
REDHAT RHSA-2017:3402

https://access.redhat.com/errata/RHSA-2017:3403
REDHAT RHSA-2017:3403

http://www.securitytracker.com/id/1039752
SECTRACK 1039752

https://www.postgresql.org/support/security/

https://access.redhat.com/errata/RHSA-2017:3404
REDHAT RHSA-2017:3404

https://access.redhat.com/errata/RHSA-2017:3405
REDHAT RHSA-2017:3405

http://www.securityfocus.com/bid/101949
BID 101949 PostgreSQL CVE-2017-12172 Remote Privilege Escalation Vulnerabilities Release Date:2017-12-01

https://www.postgresql.org/about/news/1801/ CONFIRM

- Metasploit Modules Related To CVE-2017-12172

There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information)