Description

PostgreSQL uses the username for a salt when generating passwords, which makes it easier for remote attackers to guess passwords via a brute force attack.

Remediation

References

CVE-2002-1657

Related Vulnerabilities

MongoDb Integer Overflow or Wraparound Vulnerability (CVE-2019-2392)

WordPress Plugin Advanced Contact form 7 DB Arbitrary File Upload (1.4.4)

PHP Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2007-4652)

WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2012-4448)

Oracle JRE CVE-2013-0443 Vulnerability (CVE-2013-0443)

Severity

Medium

Classification

CVE-2002-1657

Tags

Missing Update Known Vulnerabilities