Summary
This host is installed with PostgreSQL and is prone to denial of service vulnerability.
Impact
Successful exploitation will allow remote attackers to crash the server via a specially crafted SQL query.
Impact Level: Application
Solution
Upgrade to PostgreSQL 8.3.23, 8.4.16, 9.0.12, 9.1.8, 9.2.3 or later, For updates refer to http://www.postgresql.org/download/
Insight
Input validation error within the 'enum_recv()' function of backend/utils/adt/enum.c
Affected
PostgreSQL version 9.2.x before 9.2.3, 9.1.x before 9.1.8, 9.0.x before 9.0.12, 8.4.x before 8.4.16, and 8.3.x before 8.3.23
References
Severity
Classification
-
CVE CVE-2013-0255 -
CVSS Base Score: 6.8
AV:N/AC:L/Au:S/C:N/I:N/A:C
Related Vulnerabilities
- AVG Anti-Virus UPX Processing Denial of Service Vulnerability
- Apple Safari JavaScript 'Reload()' DoS Vulnerability - July09
- Apache Subversion 'mod_dav_svn' Module Multiple DoS Vulnerabilities
- ClamAV 'cli_pdf()' PDF File Processing Denial Of Service Vulnerability
- Cogent DataHub Integer Overflow Vulnerability