PostgreSQL 'bitsubstr' Buffer Overflow Vulnerability Network Vulnerability

Summary

PostgreSQL is prone to a buffer-overflow vulnerability because the application fails to perform adequate boundary checks on user- supplied data. Attackers can exploit this issue to execute arbitrary code with elevated privileges or crash the affected application. PostgreSQL version 8.0.x, 8.1.x, 8.3.x is vulnerable other versions may also be affected.

References

http://intevydis.blogspot.com/2010/01/postgresql-8023-bitsubstr-overflow.html
http://www.postgresql.org/
http://www.securityfocus.com/bid/37973
http://xforce.iss.net/xforce/xfdb/55902

Updated on 2015-03-25

Severity

Classification

CVE CVE-2010-0442

CVSS	Base Score: 6.5 AV:N/AC:L/Au:S/C:P/I:P/A:P

Related Vulnerabilities

MySQL Authentication Error Message User Enumeration Vulnerability
IBM DB2 Distributed Relational Database Architecture Request DoS Vulnerability
MySQL < 5.1.47 Multiple Vulnerabilities
Oracle MySQL Multiple Unspecified vulnerabilities-02 July14 (Windows)
PostgreSQL 'intarray' Module 'gettoken()' Buffer Overflow Vulnerability

Take action and discover your vulnerabilities