Description

The regular expression parser in TCL before 8.4.17, as used in PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, and 7.4 before 7.4.19, allows remote authenticated users to cause a denial of service (backend crash) via an out-of-bounds backref number.

Remediation

References

CVE-2007-4769

Related Vulnerabilities

WordPress Plugin Hot Files:File Sharing and Download Manager Cross-Site Scripting (1.0.0)

WordPress Plugin underConstruction Cross-Site Scripting (1.18)

WordPress Plugin Copperleaf Photolog 'cplphoto.php' SQL Injection (0.16)

WordPress Plugin U BuddyPress Forum Attachment 'fileurl' Parameter Remote File Disclosure (1.1.1)

WebLogic CVE-2020-14687 Vulnerability (CVE-2020-14687)

Severity

Medium

Classification

CVE-2007-4769

Tags

Missing Update Known Vulnerabilities