Description

PostgreSQL before 8.3.7, 8.2.13, 8.1.17, 8.0.21, and 7.4.25 allows remote authenticated users to cause a denial of service (stack consumption and crash) by triggering a failure in the conversion of a localized error message to a client-specified encoding, as demonstrated using mismatched encoding conversion requests.

Remediation

References

CVE-2009-0922

Related Vulnerabilities

WordPress Plugin Gmedia Photo Gallery Multiple Cross-Site Scripting Vulnerabilities (1.18.4)

WordPress Plugin WP People 'wp-people-popup.php' SQL Injection (2.0)

PHP Improper Input Validation Vulnerability (CVE-2016-7129)

PHP Improper Restriction of XML External Entity Reference Vulnerability (CVE-2023-3823)

WordPress Plugin Polylang Cross-Site Scripting (1.5.1)

Severity

Medium

Classification

CVE-2009-0922

Tags

Missing Update Known Vulnerabilities