Описание
The core server component in PostgreSQL 8.3 before 8.3.8 and 8.2 before 8.2.14, when using LDAP authentication with anonymous binds, allows remote attackers to bypass authentication via an empty password.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | not-affected | 8.3.8-1 |
| hardy | released | 8.3.8-0ubuntu8.04 |
| intrepid | released | 8.3.8-0ubuntu8.10 |
| jaunty | released | 8.3.8-0ubuntu9.04 |
| upstream | released | 8.3.8 |
Показывать по
EPSS
6.8 Medium
CVSS2
Связанные уязвимости
The core server component in PostgreSQL 8.3 before 8.3.8 and 8.2 before 8.2.14, when using LDAP authentication with anonymous binds, allows remote attackers to bypass authentication via an empty password.
The core server component in PostgreSQL 8.3 before 8.3.8 and 8.2 before 8.2.14, when using LDAP authentication with anonymous binds, allows remote attackers to bypass authentication via an empty password.
The core server component in PostgreSQL 8.3 before 8.3.8 and 8.2 befor ...
The core server component in PostgreSQL 8.3 before 8.3.8 and 8.2 before 8.2.14, when using LDAP authentication with anonymous binds, allows remote attackers to bypass authentication via an empty password.
EPSS
6.8 Medium
CVSS2