WEB APPLICATION VULNERABILITIES Standard & Premium

PostgreSQL Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2014-0063)

Description

Multiple stack-based buffer overflows in PostgreSQL before 8.4.20, 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 allow remote authenticated users to cause a denial of service (crash) or possibly execute arbitrary code via vectors related to an incorrect MAXDATELEN constant and datetime values involving (1) intervals, (2) timestamps, or (3) timezones, a different vulnerability than CVE-2014-0065.

Remediation

References

Related Vulnerabilities

WordPress Plugin Diary & Availability Calendar SQL Injection (1.0.3)

WordPress Plugin WordPress Landing Pages Unspecified Vulnerability (2.2.6)

XWiki Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2022-29253)

Joomla! Core 3.x.x Cross-Site Scripting (3.1.2 - 3.8.7)

Jboss EAP XML Injection (aka Blind XPath Injection) Vulnerability (CVE-2018-1000632)

Severity

Medium

Classification

CVE-2014-0063 CWE-119

Tags

Missing Update Known Vulnerabilities