| In PostgreSQL 9.3 through 11.2, the "COPY TO/FROM PROGRAM" function allows superusers and users in the 'pg_execute_server_program' group to execute arbitrary code in the context of the database's operating system user. This functionality is enabled by default and can be abused to run arbitrary operating system commands on Windows, Linux, and macOS. However according to PostgreSQL and community, this is not a security vulnerability but the less known feature. To avoid the misuse it is recommended not to grant superuser access to remote or otherwise untrusted users. |
