Description

The regular expression parser in TCL before 8.4.17, as used in PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, and 7.4 before 7.4.19, allows remote authenticated users to cause a denial of service (backend crash) via an out-of-bounds backref number.

Remediation

References

CVE-2007-4769

Related Vulnerabilities

Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-35463)

Jboss EAP Exposure of Resource to Wrong Sphere Vulnerability (CVE-2021-3859)

WordPress Plugin All-in-One Video Gallery Local File Inclusion (2.4.9)

WordPress Plugin CloudFlare Multiple Cross-Site Scripting Vulnerabilities (1.3.20)

WordPress Plugin Buddy Share It Allusers FB YR Arbitrary File Upload (3.2.8)

Severity

Medium

Classification

CVE-2007-4769

Tags

Missing Update Known Vulnerabilities