Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-0105

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2006-0105
Last Modified 07 Mar 2011 09:29:20
Published 10 Jan 2006 03:03:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-0105

Summary

PostgreSQL 8.0.x before 8.0.6 and 8.1.x before 8.1.2, when running on Windows, allows remote attackers to cause a denial of service (postmaster exit and no new connections) via a large number of simultaneous connection requests.

Vulnerable Systems

Application

  • Postgresql 8.0

  • Postgresql 8.0.1

  • Postgresql 8.0.2

  • Postgresql 8.0.3

  • Postgresql 8.0.4

  • Postgresql 8.0.5

  • Postgresql 8.1.0

  • Postgresql 8.1.1


References

MLIST - [pgsql-announce] 20060109 CRITICAL RELEASE: Minor Releases to Fix DoS Vulnerability

VUPEN - ADV-2006-0114

XF - postgresql-connection-request-dos(24049)

BID - 16201

BUGTRAQ - 20060111 PostgreSQL security releases 8.0.6 and 8.1.2

CONFIRM - http://www.postgresql.org/about/news.456

SECTRACK - 1015482

SREASON - 327

SECUNIA - 18419


Last Updated: 27 May 2016 10:41:32