WEB APPLICATION VULNERABILITIES Standard & Premium

PostgreSQL Numeric Errors Vulnerability (CVE-2013-1900)

Description

PostgreSQL 9.2.x before 9.2.4, 9.1.x before 9.1.9, 9.0.x before 9.0.13, and 8.4.x before 8.4.17, when using OpenSSL, generates insufficiently random numbers, which might allow remote authenticated users to have an unspecified impact via vectors related to the "contrib/pgcrypto functions."

Remediation

References

Related Vulnerabilities

WordPress Plugin Ultimate Membership Pro Security Bypass (8.6)

Apache Traffic Server CVE-2015-5168 Vulnerability (CVE-2015-5168)

WordPress Plugin Easy Redirect Manager Cross-Site Scripting (2.18.18)

e107 Other Vulnerability (CVE-2005-3521)

WordPress Plugin JS Help Desk (formerly JS Support Ticket) SQL Injection (2.1.0)

Severity

High

Classification

CVE-2013-1900

Tags

Missing Update Known Vulnerabilities