SecuritySpace - CVE-2017-8806

Vulnerability Search		Search 324607 CVE descriptions and 146377 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2017-8806

Description: The Debian pg_ctlcluster, pg_createcluster, and pg_upgradecluster scripts, as distributed in the Debian postgresql-common package before 181+deb9u1 for PostgreSQL (and other packages related to Debian and Ubuntu), handled symbolic links insecurely, which could result in local denial of service by overwriting arbitrary files.

Test IDs: 1.3.6.1.4.1.25623.1.0.704029 1.3.6.1.4.1.25623.1.1.1.2.2017.1169

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2017-8806
BugTraq ID: 101810
http://www.securityfocus.com/bid/101810

CVE ID:	CVE-2017-8806
Description:	The Debian pg_ctlcluster, pg_createcluster, and pg_upgradecluster scripts, as distributed in the Debian postgresql-common package before 181+deb9u1 for PostgreSQL (and other packages related to Debian and Ubuntu), handled symbolic links insecurely, which could result in local denial of service by overwriting arbitrary files.
Test IDs:	1.3.6.1.4.1.25623.1.0.704029 1.3.6.1.4.1.25623.1.1.1.2.2017.1169
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2017-8806 BugTraq ID: 101810 http://www.securityfocus.com/bid/101810