Description

Buffer overflows in (1) circle_poly, (2) path_encode and (3) path_add (also incorrectly identified as path_addr) for PostgreSQL 7.2.3 and earlier allow attackers to cause a denial of service and possibly execute arbitrary code, possibly as a result of an integer overflow.

Remediation

References

CVE-2002-1401

Related Vulnerabilities

Oracle Database Server CVE-2006-0268 Vulnerability (CVE-2006-0268)

WordPress Plugin Smush Image Compression and Optimization Multiple Vulnerabilities (2.9.1)

WordPress 3.9.x Multiple Vulnerabilities (3.9 - 3.9.36)

SharePoint Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-8252)

XWiki Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-50721)

Severity

Medium

Classification

CVE-2002-1401 CWE-119

Tags

Missing Update Known Vulnerabilities