CVE-2002-1399

Published: Jan 17, 2003Modified: Apr 16, 2026

10.0

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 10.0 / Impact: 10.0

Source: NVD

Description

Unknown vulnerability in cash_out and possibly other functions in PostgreSQL 7.2.1 and earlier, and possibly later versions before 7.2.3, with unknown impact, based on an invalid integer input which is processed as a different data type, as demonstrated using cash_out(2).

Affected (9)

Products: Postgresql: Postgresql

Postgresql

1 product

Postgresql

Configuration A

9 vulnerable

Vulnerable Software	Affected Versions
Postgresql Postgresql	Version 6.3.2
Postgresql Postgresql	Version 6.5.3
Postgresql Postgresql	Version 7.0.3
Postgresql Postgresql	Version 7.1.1
Postgresql Postgresql	Version 7.1.2
Postgresql Postgresql	Version 7.1.3
Postgresql Postgresql	Version 7.1
Postgresql Postgresql	Version 7.2.1
Postgresql Postgresql	Version 7.2

References (6)

http://archives.postgresql.org/pgsql-hackers/2002-08/msg00708.php

Source: cve@mitre.org

http://archives.postgresql.org/pgsql-hackers/2002-08/msg00713.php

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=102978152712430&w=2

Source: cve@mitre.org

http://archives.postgresql.org/pgsql-hackers/2002-08/msg00708.php

Source: af854a3a-2127-422b-91ae-364da2661108

http://archives.postgresql.org/pgsql-hackers/2002-08/msg00713.php

Source: af854a3a-2127-422b-91ae-364da2661108

http://marc.info/?l=bugtraq&m=102978152712430&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.