Summary
The remote host is missing an update to libdbd-pg-perl announced via advisory DSA 2431-1.
Solution
https://secure1.securityspace.com/smysecure/catid.html?in=DSA%202431-1
Insight
Niko Tyni discovered two format string vulnerabilities in DBD::Pg, a Perl DBI driver for the PostgreSQL database server, which can be exploited by a rogue database server.
For the stable distribution (squeeze), this problem has been fixed in version 2.17.1-2+squeeze1.
For the unstable distribution (sid), this problem has been fixed in version 2.19.0-1.
We recommend that you upgrade your libdbd-pg-perl packages.
Severity
Classification
-
CVE CVE-2012-1151 -
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P
Related Vulnerabilities