Description

PostgreSQL before 8.3.7, 8.2.13, 8.1.17, 8.0.21, and 7.4.25 allows remote authenticated users to cause a denial of service (stack consumption and crash) by triggering a failure in the conversion of a localized error message to a client-specified encoding, as demonstrated using mismatched encoding conversion requests.

Remediation

References

CVE-2009-0922

Related Vulnerabilities

Dolibarr Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2017-9839)

WordPress Plugin Two-Factor Authentication-Clockwork SMS Cross-Site Scripting (1.0.3)

WordPress Plugin Portfolio Responsive Gallery SQL Injection (1.1.7)

WordPress Plugin RegistrationMagic-Custom Registration Forms, User Registration, Payment, and User Login Security Bypass (5.0.1.7)

WordPress Plugin Easy Forms for MailChimp Unspecified Vulnerability (6.0.3.2)

Severity

Medium

Classification

CVE-2009-0922

Tags

Missing Update Known Vulnerabilities