Описание
The add_database function in objects.c in the pgbouncer pooler 1.5.2 for PostgreSQL allows remote attackers to cause a denial of service (daemon outage) via a long database name in a request.
Ссылки
- Third Party Advisory
- Mailing ListThird Party Advisory
- Third Party AdvisoryVDB Entry
- Issue TrackingThird Party Advisory
- Third Party Advisory
- Mailing ListThird Party Advisory
- Third Party AdvisoryVDB Entry
- Issue TrackingThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:a:pgbouncer_project:pgbouncer:1.5.2:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:-:*:*:*:*:*:*:*
EPSS
Процентиль: 80%
0.01517
Низкий
5 Medium
CVSS2
Дефекты
CWE-119
Связанные уязвимости
ubuntu
больше 12 лет назад
The add_database function in objects.c in the pgbouncer pooler 1.5.2 for PostgreSQL allows remote attackers to cause a denial of service (daemon outage) via a long database name in a request.
debian
больше 12 лет назад
The add_database function in objects.c in the pgbouncer pooler 1.5.2 f ...
github
около 3 лет назад
The add_database function in objects.c in the pgbouncer pooler 1.5.2 for PostgreSQL allows remote attackers to cause a denial of service (daemon outage) via a long database name in a request.
EPSS
Процентиль: 80%
0.01517
Низкий
5 Medium
CVSS2
Дефекты
CWE-119