Lucene search
HistoryJan 17, 2003 - 5:00 a.m.
CVE-2002-1401
6.5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
7.2 High
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
65.4%
Buffer overflows in (1) circle_poly, (2) path_encode and (3) path_add (also incorrectly identified as path_addr) for PostgreSQL 7.2.3 and earlier allow attackers to cause a denial of service and possibly execute arbitrary code, possibly as a result of an integer overflow.
Affected configurations
Node
postgresqlpostgresqlMatch6.3.2
ORpostgresqlpostgresqlMatch6.5.3
ORpostgresqlpostgresqlMatch7.0.3
ORpostgresqlpostgresqlMatch7.1
ORpostgresqlpostgresqlMatch7.1.1
ORpostgresqlpostgresqlMatch7.1.2
ORpostgresqlpostgresqlMatch7.1.3
ORpostgresqlpostgresqlMatch7.2
ORpostgresqlpostgresqlMatch7.2.1
ORpostgresqlpostgresqlMatch7.2.2
ORpostgresqlpostgresqlMatch7.2.3
Related
cvelist
cvelist
CVE-2002-1401
2003-01-08 05:00:00
cve
cve
CVE-2002-1401
2003-01-17 05:00:00
osv
osv
postgresql - buffer overflows
2002-09-12 00:00:00
nessus
nessus
Debian DSA-165-1 : postgresql - buffer overflows
2004-09-29 00:00:00
PostgreSQL < 7.2.3 Multiple Vulnerabilities
2003-03-24 00:00:00
RHEL 2.1 : postgresql (RHSA-2002:301)
2004-07-06 00:00:00
redhat
redhat
(RHSA-2002:301) postgresql security update
2003-02-06 00:00:00
6.5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
7.2 High
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
65.4%
Related for NVD:CVE-2002-1401