Description

PostgreSQL 7.3.x before 7.3.14, 7.4.x before 7.4.12, 8.0.x before 8.0.7, and 8.1.x before 8.1.3, when compiled with Asserts enabled, allows local users to cause a denial of service (server crash) via a crafted SET SESSION AUTHORIZATION command, a different vulnerability than CVE-2006-0553.

Remediation

References

CVE-2006-0678

Related Vulnerabilities

WordPress Plugin Advanced Access Manager Unspecified Vulnerability (5.9.8.1)

CubeCart Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2018-20716)

TwistedHTTP Request Splitting Vulnerability (CVE-2020-10109)

IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-1507)

WordPress Plugin WPML (WordPress Multilingual) Cross-Site Request Forgery (4.3.6)

Severity

Low

Classification

CVE-2006-0678

Tags

Missing Update Known Vulnerabilities