Lucene search
PRIOn knowledge basePRION:CVE-2015-6817HistoryMay 23, 2017 - 4:29 a.m.
Design/Logic Flaw
2017-05-2304:29:00
PRIOn knowledge base
www.prio-n.com
1
PgBouncer 1.6.x before 1.6.1, when configured with auth_user, allows remote attackers to gain login access as auth_user via an unknown username.
References
comments.gmane.org/gmane.comp.db.postgresql.pgbouncer.general/1251
www.openwall.com/lists/oss-security/2015/09/05/7
github.com/pgbouncer/pgbouncer/commit/7ca3e5279d05fceb1e8a043c6f5b6f58dea3ed38
github.com/pgbouncer/pgbouncer/issues/69
pgbouncer.github.io/2015/09/pgbouncer-1-6-1
security.gentoo.org/glsa/201701-24
Related
ubuntucve
ubuntucve
CVE-2015-6817
2017-05-23 00:00:00
nvd
nvd
CVE-2015-6817
2017-05-23 04:29:01
nessus
nessus
Pgbouncer 1.6 Invalid User Authentication Bypass
2016-08-17 00:00:00
FreeBSD : pgbouncer -- failed auth_query lookup leads to connection as auth_user (d76961da-56f6-11e5-934b-002590263bf5)
2015-09-10 00:00:00
GLSA-201701-24 : PgBouncer: Multiple vulnerabilities
2017-01-12 00:00:00
debiancve
debiancve
CVE-2015-6817
2017-05-23 04:29:01
cve
cve
CVE-2015-6817
2017-05-23 04:29:01
freebsd
freebsd
pgbouncer -- failed auth_query lookup leads to connection as auth_user
2015-09-03 00:00:00
cvelist
cvelist
CVE-2015-6817
2017-05-23 03:56:00
gentoo
gentoo
PgBouncer: Multiple vulnerabilities
2017-01-11 00:00:00