CVE-2005-0244 in PostgreSQL
Summary
by MITRE
PostgreSQL 8.0.0 and earlier allows local users to bypass the EXECUTE permission check for functions by using the CREATE AGGREGATE command.
Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.
Analysis
by VulDB Data Team • 07/05/2025
This vulnerability exists in PostgreSQL versions 8.0.0 and earlier where a security flaw allows local users to circumvent the EXECUTE permission checks for database functions through the improper use of the CREATE AGGREGATE command. The issue stems from insufficient access control validation within the database system's permission model, specifically when processing aggregate function creation operations.
The technical flaw occurs because PostgreSQL fails to properly validate whether the user has adequate EXECUTE permissions on the underlying functions when they attempt to create aggregate functions using the CREATE AGGREGATE command. This oversight enables malicious users to execute functions that they would normally be restricted from running, effectively bypassing the established privilege system. The vulnerability is particularly concerning because it operates at the database engine level and can be exploited by users who have local access to the system.
The operational impact of this vulnerability is significant as it allows local attackers to escalate their privileges and execute arbitrary database functions without proper authorization. This creates a potential pathway for data exfiltration, manipulation, or destruction of database contents. The vulnerability essentially undermines the fundamental principle of least privilege that database systems rely upon for security. Attackers could potentially access sensitive data, modify database structures, or perform administrative operations that should be restricted to authorized users only.
This vulnerability aligns with CWE-284 which describes improper access control in software systems, specifically the inadequate enforcement of access restrictions. The issue also relates to ATT&CK technique T1078 which covers valid accounts and privilege escalation through legitimate system access. Organizations using affected PostgreSQL versions should immediately apply security patches from the vendor to address this access control flaw. Additionally, implementing proper monitoring of CREATE AGGREGATE commands and reviewing user permissions regularly can help detect potential exploitation attempts. System administrators should also consider restricting local access to database servers and implementing network segmentation to limit the attack surface and prevent unauthorized users from exploiting this vulnerability.