Description

PostgreSQL before 8.3.7, 8.2.13, 8.1.17, 8.0.21, and 7.4.25 allows remote authenticated users to cause a denial of service (stack consumption and crash) by triggering a failure in the conversion of a localized error message to a client-specified encoding, as demonstrated using mismatched encoding conversion requests.

Remediation

References

CVE-2009-0922

Related Vulnerabilities

LimeSurvey Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2007-5573)

WordPress Plugin Easy Google Maps Cross-Site Scripting (1.9.33)

PHP Out-of-bounds Read Vulnerability (CVE-2019-11041)

Python Other Vulnerability (CVE-2016-3189)

WordPress Plugin Map Block for Google Maps Unspecified Vulnerability (1.31)

Severity

Medium

Classification

CVE-2009-0922

Tags

Missing Update Known Vulnerabilities