PostgreSQL 'intarray' Module 'gettoken()' Buffer Overflow Vulnerability

PostgreSQL is prone to a buffer-overflow vulnerability because the application fails to perform adequate boundary checks on user-supplied data. The issue affects the 'intarray' module.

An authenticated attacker can leverage this issue to execute arbitrary code within the context of the vulnerable application. Failed exploit attempts will result in a denial-of-service condition.

The issue affect versions prior to 8.2.20, 8.3.14, 8.4.7, and 9.0.3.


 

Privacy Statement
Copyright 2010, SecurityFocus