Lucene search
PostgreSQL Global Development GroupPOSTGRESQL:CVE-2013-1899HistoryApr 04, 2013 - 5:55 p.m.
Vulnerability in core server (CVE-2013-1899)
2013-04-0417:55:00
PostgreSQL Global Development Group
www.postgresql.org
548
6.5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
0.972 High
EPSS
Percentile
99.8%
A connection request containing a database name that begins with โ-โ may be crafted to damage or destroy files within a serverโs data directory
| CPE | Name | Operator | Version |
|---|---|---|---|
| postgresql | lt | 9.1.9 | |
| postgresql | lt | 9.0.13 | |
| postgresql | lt | 9.2.4 |
References
Related
checkpoint_advisories
checkpoint_advisories
PostgreSQL Database Name Command Line Flag Injection (CVE-2013-1899)
2013-11-18 00:00:00
ubuntucve
ubuntucve
CVE-2013-1899
2013-04-04 00:00:00
threatpost
threatpost
Vulnerability Patched in PostgreSQL Database Server
2013-04-04 14:41:38
metasploit
metasploit
PostgreSQL Database Name Command Line Flag Injection
2013-04-04 15:19:47
huawei
huawei
Security Advisory - Command Injection Vulnerability in the GaussDB
2017-05-31 00:00:00
seebug
seebug
PostgreSQL ๆ็ปๆๅกๅไปฃ็ ๆง่กๆผๆด(CVE-2013-1899)
2013-04-08 00:00:00
nessus
nessus
PostgreSQL 9.0 < 9.0.13 / 9.1 < 9.1.9 / 9.2 < 9.2.4 File Deletion
2013-04-08 00:00:00
Amazon Linux AMI : postgresql9 (ALAS-2013-178)
2013-09-04 00:00:00
Debian DSA-2657-1 : postgresql-8.4 - guessable random numbers
2013-04-05 00:00:00
prion
prion
Design/Logic Flaw
2013-04-04 17:55:00
openvas
openvas
PostgreSQL Denial of Service Vulnerability (Apr 2013) - Windows
2013-04-09 00:00:00
Ubuntu Update for postgresql-9.1 USN-1789-1
2013-04-05 00:00:00
cve
cve
CVE-2013-1899
2013-04-04 17:55:00
cvelist
cvelist
CVE-2013-1899
2013-04-04 17:00:00
securityvulns
securityvulns
ESA-2013-040: RSAยฎ Authentication Manager 8.0 Multiple Vulnerabilities
2013-06-04 00:00:00
PostgreSQL multiple security vulnerabilities
2013-04-08 00:00:00
[USN-1789-1] PostgreSQL vulnerabilities
2013-04-08 00:00:00
osv
osv
postgresql-8.4 - guessable random numbers
2013-04-04 00:00:00
postgresql-9.1 - several
2013-04-04 00:00:00
debian
debian
[BSA-080] Security Update for postgresql-9.1
2013-04-08 08:27:20
[SECURITY] [DSA 2657-1] postgresql-8.4 security update
2013-04-04 13:47:32
[SECURITY] [DSA 2658-1] postgresql-9.1 security update
2013-04-04 14:06:41
ubuntu
ubuntu
PostgreSQL vulnerabilities
2013-04-04 00:00:00
fedora
fedora
[SECURITY] Fedora 19 Update: postgresql-9.2.4-1.fc19
2013-04-20 19:59:46
[SECURITY] Fedora 18 Update: postgresql-9.2.4-1.fc18
2013-04-05 22:59:41
[SECURITY] Fedora 17 Update: postgresql-9.1.9-1.fc17
2013-04-05 23:11:53
amazon
amazon
Critical: postgresql9
2013-04-04 11:49:00
suse
suse
postgresql: security and bugfix update to 9.0.13 (important)
2013-04-08 07:04:30
postgresql91 to version 9.1.9. (important)
2013-04-05 10:04:26
Security update for PostgreSQL (important)
2013-04-23 22:04:36
vmware
vmware
VMware vFabric Postgres security updates
2013-04-04 00:00:00
freebsd
freebsd
PostgreSQL -- anonymous remote access data corruption vulnerability
2013-04-04 00:00:00
gentoo
gentoo
PostgreSQL: Multiple vulnerabilities
2014-08-29 00:00:00
6.5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
0.972 High
EPSS
Percentile
99.8%
Related for POSTGRESQL:CVE-2013-1899