Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-0972

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2002-0972
Last Modified 10 Sep 2008 03:13:28
Published 24 Sep 2002 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2002-0972

Summary

Buffer overflows in PostgreSQL 7.2 allow attackers to cause a denial of service and possibly execute arbitrary code via long arguments to the functions (1) lpad or (2) rpad.

Vulnerable Systems

Application

  • Postgresql 6.3.2

  • Postgresql 6.5.3

  • Postgresql 7.1

  • Postgresql 7.1.1

  • Postgresql 7.1.2

  • Postgresql 7.2

  • Postgresql 7.2.1


References

BUGTRAQ - 20020820 @(#)Mordred Labs advisory 0x0004: Multiple buffer overflows in PostgreSQL.

REDHAT - RHSA-2003:001

SECUNIA - 8034


Last Updated: 27 May 2016 10:37:08