CVE-2005-1410

Published May 3, 2005

Last updated 6 years ago

Overview

Description: The tsearch2 module in PostgreSQL 7.4 through 8.0.x declares the (1) dex_init, (2) snb_en_init, (3) snb_ru_init, (4) spell_init, and (5) syn_init functions as "internal" even when they do not take an internal argument, which allows attackers to cause a denial of service (application crash) and possibly have other impacts via SQL commands that call other functions that accept internal arguments.
Source: secalert@redhat.com
NVD status: Modified

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 2.1
Impact score: 2.9
Exploitability score: 3.9
Vector string: AV:L/AC:L/Au:N/C:N/I:N/A:P

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:postgresql:postgresql:7.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FBE2567C-BF48-4255-9E56-590A6F9DD932"
          },
          {
            "criteria": "cpe:2.3:a:postgresql:postgresql:7.4.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FB318EB9-1B49-452A-92CF-89D9BA990AB9"
          },
          {
            "criteria": "cpe:2.3:a:postgresql:postgresql:7.4.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "815E58C0-327D-4F14-B496-05FC8179627E"
          },
          {
            "criteria": "cpe:2.3:a:postgresql:postgresql:7.4.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3EF2D056-5120-4F98-8343-4EC31F962CFE"
          },
          {
            "criteria": "cpe:2.3:a:postgresql:postgresql:7.4.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "516E0E86-3D8A-43F9-9DD5-865F5C889FC4"
          },
          {
            "criteria": "cpe:2.3:a:postgresql:postgresql:8.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "94222D76-82BE-4FFB-BE4B-5DBAF3080D4D"
          },
          {
            "criteria": "cpe:2.3:a:postgresql:postgresql:8.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "91D1232E-4D0A-4BDC-99F6-25AEE014E9AE"
          },
          {
            "criteria": "cpe:2.3:a:postgresql:postgresql:8.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "105E9F52-D17E-4A0B-9C46-FD32A930B1E6"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:trustix:secure_linux:2.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "53AF1A2D-B0A2-4097-AD1D-DF3AF27171BA"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Configurations

References