Description

Buffer overflows in the (1) TZ and (2) SET TIME ZONE enivronment variables for PostgreSQL 7.2.1 and earlier allow local users to cause a denial of service and possibly execute arbitrary code.

Remediation

References

CVE-2002-1402

Related Vulnerabilities

TYPO3 Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-4627)

WebLogic CVE-2016-3416 Vulnerability (CVE-2016-3416)

Coppermine Cross-site Scripting (XSS) Vulnerability (CVE-2015-3921)

Cherokee Improper Input Validation Vulnerability (CVE-2009-4489)

WordPress Plugin Woody ad snippets-Insert Header Footer Code, AdSense Ads Multiple Vulnerabilities (2.2.4)

Severity

Medium

Classification

CVE-2002-1402

Tags

Missing Update Known Vulnerabilities