Security Advisory

CVE-2013-1899

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2013-04-04 17:00:00

Last updated 2024-08-06 15:20:37

Assigner redhat

State PUBLISHED

Description

Argument injection vulnerability in PostgreSQL 9.2.x before 9.2.4, 9.1.x before 9.1.9, and 9.0.x before 9.0.13 allows remote attackers to cause a denial of service (file corruption), and allows remote authenticated users to modify configuration settings and execute arbitrary code, via a connection request using a database name that begins with a "-" (hyphen).

← Browse all CVEs View on cve.org ↗