Description

The build_tablename function in pgsql.c in the PostgreSQL (aka pgsql) extension in PHP through 5.6.7 does not validate token extraction for table names, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted name.

Remediation

References

CVE-2015-1352

Related Vulnerabilities

PHP Time-of-check Time-of-use (TOCTOU) Race Condition Vulnerability (CVE-2004-0594)

Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-3325)

PHP Out-of-bounds Read Vulnerability (CVE-2017-9224)

WebLogic CVE-2022-21350 Vulnerability (CVE-2022-21350)

WordPress Plugin Teaser Maker Cross-Site Scripting (0.1.114)

Severity

Medium

Classification

CVE-2015-1352

Tags

Missing Update Known Vulnerabilities