Description

Multiple format string vulnerabilities in dbdimp.c in DBD::Pg (aka DBD-Pg or libdbd-pg-perl) module before 2.19.0 for Perl allow remote PostgreSQL database servers to cause a denial of service (process crash) via format string specifiers in (1) a crafted database warning to the pg_warn function or (2) a crafted DBD statement to the dbd_st_prepare function.

Remediation

References

CVE-2012-1151

Related Vulnerabilities

MySQL CVE-2012-1703 Vulnerability (CVE-2012-1703)

WordPress Plugin Float to Top Button Cross-Site Scripting (2.3.6)

WordPress Plugin WP Construction Mode Cross-Site Request Forgery (1.91)

MySQL CVE-2020-14893 Vulnerability (CVE-2020-14893)

WordPress Plugin Social Networking & E-commerce Arbitrary File Upload (0.0.32)

Severity

Medium

Classification

CVE-2012-1151 CWE-134

Tags

Missing Update Known Vulnerabilities