Description

The tsearch2 module in PostgreSQL 7.4 through 8.0.x declares the (1) dex_init, (2) snb_en_init, (3) snb_ru_init, (4) spell_init, and (5) syn_init functions as "internal" even when they do not take an internal argument, which allows attackers to cause a denial of service (application crash) and possibly have other impacts via SQL commands that call other functions that accept internal arguments.

Remediation

References

CVE-2005-1410

Related Vulnerabilities

Oracle Application Server Other Vulnerability (CVE-2006-5358)

WordPress Plugin Google Analytics Dashboard Plugin for WordPress by MonsterInsights Multiple Cross-Site Scripting Vulnerabilities (4.2.4)

MySQL CVE-2013-2381 Vulnerability (CVE-2013-2381)

WordPress Plugin WP-Testimonials SQL Injection (3.4.1)

WordPress Plugin Import all XML, CSV & TXT into WordPress Cross-Site Scripting (6.4.2)

Severity

Low

Classification

CVE-2005-1410

Tags

Missing Update Known Vulnerabilities