Description

PostgreSQL stores usernames and passwords in plaintext in (1) pg_shadow and (2) pg_pwd, which allows attackers with sufficient privileges to gain access to databases.

Remediation

References

CVE-2000-1199

Related Vulnerabilities

WordPress Plugin amtyThumb Cross-Site Scripting (4.1.2)

Internet Information Services Other Vulnerability (CVE-1999-0736)

Liferay DXP CVE-2022-45320 Vulnerability (CVE-2022-45320)

Apache HTTP Server Other Vulnerability (CVE-2006-4110)

WordPress Plugin WassUp Real Time Analytics Unspecified Vulnerability (1.7.2)

Severity

Medium

Classification

CVE-2000-1199

Tags

Missing Update Known Vulnerabilities