CVE-2002-1400

Published: Jan 17, 2003Modified: Apr 16, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

Heap-based buffer overflow in the repeat() function for PostgreSQL before 7.2.2 allows attackers to execute arbitrary code by causing repeat() to generate a large string.

Affected (9)

Products: Postgresql: Postgresql

1 product

Configuration A

9 vulnerable

Vulnerable Software	Affected Versions
Postgresql Postgresql	Version 6.3.2
Postgresql Postgresql	Version 6.5.3
Postgresql Postgresql	Version 7.0.3
Postgresql Postgresql	Version 7.1.1
Postgresql Postgresql	Version 7.1.2
Postgresql Postgresql	Version 7.1.3
Postgresql Postgresql	Version 7.1
Postgresql Postgresql	Version 7.2.1
Postgresql Postgresql	Version 7.2

References (20)

http://archives.postgresql.org/pgsql-announce/2002-08/msg00004.php

Source: cve@mitre.org

Vendor Advisory

http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000524

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=102987306029821&w=2

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=103021186622725&w=2

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=103036987114437&w=2

Source: cve@mitre.org

http://marc.info/?l=postgresql-announce&m=103062536330644

Source: cve@mitre.org

http://secunia.com/advisories/8034

Source: cve@mitre.org

http://www.mandriva.com/security/advisories?name=MDKSA-2002:062

Source: cve@mitre.org

http://www.novell.com/linux/security/advisories/2002_038_postgresql.html

Source: cve@mitre.org

http://www.redhat.com/support/errata/RHSA-2003-001.html

Source: cve@mitre.org

http://archives.postgresql.org/pgsql-announce/2002-08/msg00004.php

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000524

Source: af854a3a-2127-422b-91ae-364da2661108

http://marc.info/?l=bugtraq&m=102987306029821&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

http://marc.info/?l=bugtraq&m=103021186622725&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

http://marc.info/?l=bugtraq&m=103036987114437&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

http://marc.info/?l=postgresql-announce&m=103062536330644

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/8034

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.mandriva.com/security/advisories?name=MDKSA-2002:062

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.novell.com/linux/security/advisories/2002_038_postgresql.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.redhat.com/support/errata/RHSA-2003-001.html

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.