Description

Multiple stack-based buffer overflows in PostgreSQL before 8.4.20, 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 allow remote authenticated users to cause a denial of service (crash) or possibly execute arbitrary code via vectors related to an incorrect MAXDATELEN constant and datetime values involving (1) intervals, (2) timestamps, or (3) timezones, a different vulnerability than CVE-2014-0065.

Remediation

References

CVE-2014-0063

Related Vulnerabilities

Oracle Database Server CVE-2013-3771 Vulnerability (CVE-2013-3771)

WordPress Plugin Avenir-soft Direct Download Multiple Vulnerabilities (1.0)

Vanilla Forums Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2018-16410)

WordPress Plugin Google Maps by BestWebSoft Multiple Cross-Site Scripting Vulnerabilities (1.2.1)

Jboss EAP Improper Authentication Vulnerability (CVE-2011-4085)

Severity

Medium

Classification

CVE-2014-0063 CWE-119

Tags

Missing Update Known Vulnerabilities