CVE-2002-1401

Published Jan 17, 2003

Last updated 16 years ago

Overview

Description: Buffer overflows in (1) circle_poly, (2) path_encode and (3) path_add (also incorrectly identified as path_addr) for PostgreSQL 7.2.3 and earlier allow attackers to cause a denial of service and possibly execute arbitrary code, possibly as a result of an integer overflow.
Source: cve@mitre.org
NVD status: Analyzed

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 6.5
Impact score: 6.4
Exploitability score: 8
Vector string: AV:N/AC:L/Au:S/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: CWE-119

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:postgresql:postgresql:6.3.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FF7D1F6F-044C-478D-991D-D70281FD7C87"
          },
          {
            "criteria": "cpe:2.3:a:postgresql:postgresql:6.5.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6EB98484-1234-4BA2-ACB0-28F4BE684D92"
          },
          {
            "criteria": "cpe:2.3:a:postgresql:postgresql:7.0.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4E7C5056-E280-4BD3-9924-2345B0B82776"
          },
          {
            "criteria": "cpe:2.3:a:postgresql:postgresql:7.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F0D16C66-3688-4CF1-8788-F7D7766F04F9"
          },
          {
            "criteria": "cpe:2.3:a:postgresql:postgresql:7.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F520EC9F-7B20-4108-B3DC-ABF4947A2D6D"
          },
          {
            "criteria": "cpe:2.3:a:postgresql:postgresql:7.1.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "78D324E1-A723-4ECC-A58F-660A5125FD05"
          },
          {
            "criteria": "cpe:2.3:a:postgresql:postgresql:7.1.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E9F8CB95-DCEE-49C9-8985-E39E8E0498BE"
          },
          {
            "criteria": "cpe:2.3:a:postgresql:postgresql:7.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "95E0614E-0911-43EE-9F3D-2CF87E0F1851"
          },
          {
            "criteria": "cpe:2.3:a:postgresql:postgresql:7.2.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AFF09CFB-F7CE-4659-BB20-83231539F765"
          },
          {
            "criteria": "cpe:2.3:a:postgresql:postgresql:7.2.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EFE8C2A3-7575-41C6-896C-C367E6D35015"
          },
          {
            "criteria": "cpe:2.3:a:postgresql:postgresql:7.2.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "88ED8E8C-9044-4E77-923A-D5C6C02A1081"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Configurations

References