Executive Summary
Informations | |||
---|---|---|---|
Name | CVE-2005-1409 | First vendor Publication | 2005-05-03 |
Vendor | Cve | Last vendor Modification | 2018-10-19 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:L/Au:N/C:P/I:P/A:P) | |||
---|---|---|---|
Cvss Base Score | 7.5 | Attack Range | Network |
Cvss Impact Score | 6.4 | Attack Complexity | Low |
Cvss Expoit Score | 10 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
PostgreSQL 7.3.x through 8.0.x gives public EXECUTE access to certain character conversion functions, which allows unprivileged users to call those functions with malicious values, with unknown impact, aka the "Character conversion vulnerability." |
Original Source
Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1409 |
OVAL Definitions
Definition Id: oval:org.mitre.oval:def:676 | |||
Oval ID: | oval:org.mitre.oval:def:676 | ||
Title: | PostgreSQL Character Conversion Vulnerability | ||
Description: | PostgreSQL 7.3.x through 8.0.x gives public EXECUTE access to certain character conversion functions, which allows unprivileged users to call those functions with malicious values, with unknown impact, aka the "Character conversion vulnerability." | ||
Family: | unix | Class: | vulnerability |
Reference(s): | CVE-2005-1409 | Version: | 1 |
Platform(s): | Red Hat Enterprise Linux 3 | Product(s): | postgresql |
Definition Synopsis: | |||
|
CPE : Common Platform Enumeration
OpenVAS Exploits
Date | Description |
---|---|
2009-10-10 | Name : SLES9: Security update for PostgreSQL File : nvt/sles9p5010972.nasl |
2008-09-24 | Name : Gentoo Security Advisory GLSA 200505-12 (postgresql) File : nvt/glsa_200505_12.nasl |
2008-09-04 | Name : FreeBSD Ports: postgresql File : nvt/freebsd_postgresql1.nasl |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
16323 | PostgreSQL Character Conversion Function EXECUTE Privilege Issue |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2006-07-03 | Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2005-433.nasl - Type : ACT_GATHER_INFO |
2006-05-13 | Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_486aff579ecd11dab410000e0c2e438a.nasl - Type : ACT_GATHER_INFO |
2006-01-15 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-118-1.nasl - Type : ACT_GATHER_INFO |
2005-06-02 | Name : The remote Mandrake Linux host is missing one or more security updates. File : mandrake_MDKSA-2005-093.nasl - Type : ACT_GATHER_INFO |
2005-06-02 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2005-433.nasl - Type : ACT_GATHER_INFO |
2005-05-17 | Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-200505-12.nasl - Type : ACT_GATHER_INFO |
2005-05-05 | Name : The remote database server is affected by multiple vulnerabilities. File : postgresql_charset_and_tsearch2.nasl - Type : ACT_GATHER_INFO |
Sources (Detail)
Alert History
Date | Informations |
---|---|
2021-05-04 12:02:56 |
|
2021-04-22 01:03:10 |
|
2020-05-23 00:16:32 |
|
2018-10-19 21:19:37 |
|
2017-10-11 09:23:31 |
|
2016-04-26 13:28:48 |
|
2014-02-17 10:31:16 |
|
2013-05-11 11:25:39 |
|