[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

250770

 
 

909

 
 

196157

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2006-0678Date: (C)2006-02-14   (M)2023-12-22


PostgreSQL 7.3.x before 7.3.14, 7.4.x before 7.4.12, 8.0.x before 8.0.7, and 8.1.x before 8.1.3, when compiled with Asserts enabled, allows local users to cause a denial of service (server crash) via a crafted SET SESSION AUTHORIZATION command, a different vulnerability than CVE-2006-0553.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 1.5
Exploit Score: 2.7
Impact Score: 2.9
 
CVSS V2 Metrics:
Access Vector: LOCAL
Access Complexity: MEDIUM
Authentication: SINGLE
Confidentiality: NONE
Integrity: NONE
Availability: PARTIAL
  
Reference:
BID-16650
SECUNIA-18890
SECUNIA-19015
SECUNIA-19035
2006-0008
http://www.securityfocus.com/archive/1/425037/100/0/threaded
SREASON-498
ADV-2006-0605
OpenPKG-SA-2006.004
USN-258-1
http://www.postgresql.org/docs/8.1/static/release.html#RELEASE-8-1-3
postgresql-setsessionauth-dos(24719)

CPE    23
cpe:/a:postgresql:postgresql:7.4.10
cpe:/a:postgresql:postgresql:7.4.11
cpe:/a:postgresql:postgresql:7.4.9
cpe:/a:postgresql:postgresql:7.4.8
...

© SecPod Technologies