7.1 High
AI Score
Confidence
Low
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.012 Low
EPSS
Percentile
85.0%
It was discovered that PostgreSQL incorrectly handled certain bytes passed
to the crypt() function when using DES encryption. An attacker could use
this flaw to incorrectly handle authentication. (CVE-2012-2143)
It was discovered that PostgreSQL incorrectly handled SECURITY DEFINER and
SET attributes on procedural call handlers. An attacker could use this flaw
to cause PostgreSQL to crash, leading to a denial of service.
(CVE-2012-2655)
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 8.04 | noarch | postgresql-8.3 | <Β 8.3.19-0ubuntu8.04 | UNKNOWN |
Ubuntu | 8.04 | noarch | libecpg-compat3 | <Β 8.3.19-0ubuntu8.04 | UNKNOWN |
Ubuntu | 8.04 | noarch | libecpg-dev | <Β 8.3.19-0ubuntu8.04 | UNKNOWN |
Ubuntu | 8.04 | noarch | libecpg6 | <Β 8.3.19-0ubuntu8.04 | UNKNOWN |
Ubuntu | 8.04 | noarch | libpgtypes3 | <Β 8.3.19-0ubuntu8.04 | UNKNOWN |
Ubuntu | 8.04 | noarch | libpq-dev | <Β 8.3.19-0ubuntu8.04 | UNKNOWN |
Ubuntu | 8.04 | noarch | libpq5 | <Β 8.3.19-0ubuntu8.04 | UNKNOWN |
Ubuntu | 8.04 | noarch | postgresql-client-8.3 | <Β 8.3.19-0ubuntu8.04 | UNKNOWN |
Ubuntu | 8.04 | noarch | postgresql-contrib-8.3 | <Β 8.3.19-0ubuntu8.04 | UNKNOWN |
Ubuntu | 8.04 | noarch | postgresql-plperl-8.3 | <Β 8.3.19-0ubuntu8.04 | UNKNOWN |