Unrated severityNVD Advisory· Published Jun 19, 2007· Updated Jun 16, 2026
CVE-2007-3279
CVE-2007-3279
Description
PostgreSQL 8.1 and probably later versions, when the PL/pgSQL (plpgsql) language has been created, grants certain plpgsql privileges to the PUBLIC domain, which allows remote attackers to create and execute functions, as demonstrated by functions that perform local brute-force password guessing attacks, which may evade intrusion detection.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:postgresql:postgresql:8.1:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:postgresql:postgresql:8.1:*:*:*:*:*:*:*
- (no CPE)range: >=8.1
Patches
Vulnerability mechanics
References
6News mentions
0No linked articles in our index yet.