PostgreSQL 'bitsubstr' Buffer Overflow Vulnerability Network Vulnerability

Summary

PostgreSQL is prone to a buffer-overflow vulnerability because the application fails to perform adequate boundary checks on user- supplied data. Attackers can exploit this issue to execute arbitrary code with elevated privileges or crash the affected application. PostgreSQL version 8.0.x, 8.1.x, 8.3.x is vulnerable other versions may also be affected.

References

http://intevydis.blogspot.com/2010/01/postgresql-8023-bitsubstr-overflow.html
http://www.postgresql.org/
http://www.securityfocus.com/bid/37973
http://xforce.iss.net/xforce/xfdb/55902

Updated on 2015-03-25

Severity

Classification

CVE CVE-2010-0442
CVSS Base Score: 6.5
AV:N/AC:L/Au:S/C:P/I:P/A:P

Related Vulnerabilities

MariaDB 'COM_CHANGE_USER' Command Insecure Salt Generation Security Bypass Vulnerability
Oracle MySQL Multiple Unspecified vulnerabilities-01 July14 (Windows)
PostgreSQL 'intarray' Module 'gettoken()' Buffer Overflow Vulnerability
Oracle Database Server Multiple Components Multiple Vulnerabilities
IBM DB2 Self Tuning Memory Manager (STMM) DOS Vulnerability (Win)

Take action and discover your vulnerabilities