Description

Multiple buffer overflows in contrib/pgcrypto in PostgreSQL before 9.0.19, 9.1.x before 9.1.15, 9.2.x before 9.2.10, 9.3.x before 9.3.6, and 9.4.x before 9.4.1 allow remote authenticated users to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors.

Remediation

References

CVE-2015-0243

Related Vulnerabilities

WordPress Plugin Email Subscribers by Icegram Express-Email Marketing, Newsletters, Automation for WordPress & WooCommerce Cross-Site Scripting (4.1.6)

MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2010-2787)

WordPress Plugin Qwizcards-online quizzes and flashcards Cross-Site Scripting (3.36)

Drupal Core 4.6.x Arbitrary Code Execution (4.6.0 - 4.6.7)

WordPress Plugin Featured Comments Cross-Site Request Forgery (1.2.4)

Severity

High

Classification

CVE-2015-0243 CWE-120 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities