6.7 Medium
AI Score
Confidence
Low
8.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:S/C:C/I:N/A:C
0.009 Low
EPSS
Percentile
82.5%
PostgreSQL 7.3 before 7.3.13, 7.4 before 7.4.16, 8.0 before 8.0.11, 8.1 before 8.1.7, and 8.2 before 8.2.2 allows attackers to disable certain checks for the data types of SQL function arguments, which allows remote authenticated users to cause a denial of service (server crash) and possibly access database content.
CPE | Name | Operator | Version |
---|---|---|---|
postgresql | ge | 7.3 | |
postgresql | lt | 7.3.18 | |
postgresql | ge | 7.4 | |
postgresql | lt | 7.4.16 | |
postgresql | ge | 8.0 | |
postgresql | lt | 8.0.11 | |
postgresql | ge | 8.1 | |
postgresql | lt | 8.1.7 | |
postgresql | ge | 8.2 | |
postgresql | lt | 8.2.2 |
ftp://patches.sgi.com/support/free/security/advisories/20070201-01-P.asc
fedoranews.org/cms/node/2554
lists.rpath.com/pipermail/security-announce/2007-February/000141.html
osvdb.org/33087
secunia.com/advisories/24028
secunia.com/advisories/24033
secunia.com/advisories/24042
secunia.com/advisories/24050
secunia.com/advisories/24057
secunia.com/advisories/24094
secunia.com/advisories/24151
secunia.com/advisories/24158
secunia.com/advisories/24284
secunia.com/advisories/24315
secunia.com/advisories/24513
secunia.com/advisories/24577
secunia.com/advisories/25220
security.gentoo.org/glsa/glsa-200703-15.xml
securitytracker.com/id?1017597
sunsolve.sun.com/search/document.do?assetkey=1-26-102825-1
support.avaya.com/elmodocs2/security/ASA-2007-117.htm
www.debian.org/security/2007/dsa-1261
www.mandriva.com/security/advisories?name=MDKSA-2007:037
www.novell.com/linux/security/advisories/2007_10_sr.html
www.postgresql.org/support/security
www.redhat.com/support/errata/RHSA-2007-0064.html
www.redhat.com/support/errata/RHSA-2007-0067.html
www.redhat.com/support/errata/RHSA-2007-0068.html
www.securityfocus.com/archive/1/459280/100/0/threaded
www.securityfocus.com/archive/1/459448/100/0/threaded
www.securityfocus.com/bid/22387
www.trustix.org/errata/2007/0007
www.ubuntu.com/usn/usn-417-2
www.vupen.com/english/advisories/2007/0478
www.vupen.com/english/advisories/2007/0774
exchange.xforce.ibmcloud.com/vulnerabilities/32195
issues.rpath.com/browse/RPL-1025
issues.rpath.com/browse/RPL-830
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9739
usn.ubuntu.com/417-1/