Lucene search
HistorySep 24, 2002 - 4:00 a.m.
CVE-2002-0972
cve-2002-0972
buffer overflow
postgresql 7.2
denial of service
arbitrary code execution
nvd.
4.6 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
7.3 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
32.2%
Buffer overflows in PostgreSQL 7.2 allow attackers to cause a denial of service and possibly execute arbitrary code via long arguments to the functions (1) lpad or (2) rpad.
Affected configurations
Node
postgresqlpostgresqlMatch6.3.2
ORpostgresqlpostgresqlMatch6.5.3
ORpostgresqlpostgresqlMatch7.1
ORpostgresqlpostgresqlMatch7.1.1
ORpostgresqlpostgresqlMatch7.1.2
ORpostgresqlpostgresqlMatch7.2
ORpostgresqlpostgresqlMatch7.2.1
Related
nessus
nessus
SUSE-SA:2002:038: postgresql
2004-07-25 00:00:00
Debian DSA-165-1 : postgresql - buffer overflows
2004-09-29 00:00:00
RHEL 2.1 : postgresql (RHSA-2002:301)
2004-07-06 00:00:00
openvas
openvas
Debian Security Advisory DSA 165-1 (postgresql)
2008-01-17 00:00:00
Debian Security Advisory DSA 165-1 (postgresql)
2008-01-17 00:00:00
debian
debian
[SECURITY] [DSA 165-1] New PostgreSQL packages fix several vulnerabilities
2002-09-12 14:58:31
[SECURITY] [DSA 165-1] New PostgreSQL packages fix several vulnerabilities
2002-09-12 14:58:31
nvd
nvd
CVE-2002-0972
2002-09-24 04:00:00
cvelist
cvelist
CVE-2002-0972
2002-08-23 04:00:00
suse
suse
remote command execution in syslog-ng
2002-10-31 10:25:06
remote privilege escalation in postgresql
2002-10-21 15:54:39
osv
osv
postgresql - buffer overflows
2002-09-12 00:00:00
redhat
redhat
(RHSA-2002:301) postgresql security update
2003-02-06 00:00:00
4.6 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
7.3 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
32.2%
Related for CVE-2002-0972