Описание
SQL injection vulnerability in authpgsqllib.c in Courier-Authlib before 0.62.0, when a non-Latin locale Postgres database is used, allows remote attackers to execute arbitrary SQL commands via query parameters containing apostrophes.
SQL injection vulnerability in authpgsqllib.c in Courier-Authlib before 0.62.0, when a non-Latin locale Postgres database is used, allows remote attackers to execute arbitrary SQL commands via query parameters containing apostrophes.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2008-2380
- https://exchange.xforce.ibmcloud.com/vulnerabilities/47494
- http://osvdb.org/50811
- http://secunia.com/advisories/33235
- http://secunia.com/advisories/34234
- http://security.gentoo.org/glsa/glsa-200903-25.xml
- http://www.courier-mta.org/authlib/changelog.html
- http://www.securityfocus.com/bid/32926
Связанные уязвимости
SQL injection vulnerability in authpgsqllib.c in Courier-Authlib before 0.62.0, when a non-Latin locale Postgres database is used, allows remote attackers to execute arbitrary SQL commands via query parameters containing apostrophes.
SQL injection vulnerability in authpgsqllib.c in Courier-Authlib before 0.62.0, when a non-Latin locale Postgres database is used, allows remote attackers to execute arbitrary SQL commands via query parameters containing apostrophes.
SQL injection vulnerability in authpgsqllib.c in Courier-Authlib befor ...