Lucene search
DebianCVELIST:CVE-2015-6817HistoryMay 23, 2017 - 3:56 a.m.
CVE-2015-6817
2017-05-2303:56:00
debian
www.cve.org
8
PgBouncer 1.6.x before 1.6.1, when configured with auth_user, allows remote attackers to gain login access as auth_user via an unknown username.
References
comments.gmane.org/gmane.comp.db.postgresql.pgbouncer.general/1251
www.openwall.com/lists/oss-security/2015/09/05/7
github.com/pgbouncer/pgbouncer/commit/7ca3e5279d05fceb1e8a043c6f5b6f58dea3ed38
github.com/pgbouncer/pgbouncer/issues/69
pgbouncer.github.io/2015/09/pgbouncer-1-6-1
security.gentoo.org/glsa/201701-24
Related
ubuntucve
ubuntucve
CVE-2015-6817
2017-05-23 00:00:00
prion
prion
Design/Logic Flaw
2017-05-23 04:29:00
nvd
nvd
CVE-2015-6817
2017-05-23 04:29:01
debiancve
debiancve
CVE-2015-6817
2017-05-23 04:29:01
nessus
nessus
Pgbouncer 1.6 Invalid User Authentication Bypass
2016-08-17 00:00:00
FreeBSD : pgbouncer -- failed auth_query lookup leads to connection as auth_user (d76961da-56f6-11e5-934b-002590263bf5)
2015-09-10 00:00:00
GLSA-201701-24 : PgBouncer: Multiple vulnerabilities
2017-01-12 00:00:00
freebsd
freebsd
pgbouncer -- failed auth_query lookup leads to connection as auth_user
2015-09-03 00:00:00
cve
cve
CVE-2015-6817
2017-05-23 04:29:01
gentoo
gentoo
PgBouncer: Multiple vulnerabilities
2017-01-11 00:00:00