Description
In PostgreSQL, a modified, unauthenticated server can send an unterminated string during the establishment of Kerberos transport encryption. In certain conditions a server can cause a libpq client to over-read and report an error message containing uninitialized bytes.
Remediation
References
Related Vulnerabilities
WordPress Plugin MyBookTable Bookstore by Author Media Unspecified Vulnerability (2.1.4)
MySQL CVE-2012-3180 Vulnerability (CVE-2012-3180)
MySQL CVE-2012-0117 Vulnerability (CVE-2012-0117)
Oracle Database Server CVE-2010-0892 Vulnerability (CVE-2010-0892)
PostgreSQL Permissions, Privileges, and Access Controls Vulnerability (CVE-2007-2138)