PostgreSQL CVE-2013-1903 Password Disclosure Vulnerability
BID:58882
Info
PostgreSQL CVE-2013-1903 Password Disclosure Vulnerability
| Bugtraq ID: | 58882 |
| Class: | Design Error |
| CVE: |
CVE-2013-1903 |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 04 2013 12:00AM |
| Updated: | Apr 04 2013 12:00AM |
| Credit: | Stefan Kaltenbrunner |
| Vulnerable: |
PostgreSQL PostgreSQL 9.0 PostgreSQL PostgreSQL 9.2 PostgreSQL PostgreSQL 9.1 PostgreSQL PostgreSQL 8.4 PostgreSQL PostgreSQL 8.3 |
| Not Vulnerable: | |
Discussion
PostgreSQL CVE-2013-1903 Password Disclosure Vulnerability
PostgreSQL is prone to a password disclosure vulnerability.
Attackers can exploit this issue to disclose sensitive information. Information obtained may lead to further attacks.
PostgreSQL is prone to a password disclosure vulnerability.
Attackers can exploit this issue to disclose sensitive information. Information obtained may lead to further attacks.
Exploit / POC
PostgreSQL CVE-2013-1903 Password Disclosure Vulnerability
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
PostgreSQL CVE-2013-1903 Password Disclosure Vulnerability
Solution:
Updates are available. Please see the references or vendor advisory for more information.
Solution:
Updates are available. Please see the references or vendor advisory for more information.
References
PostgreSQL CVE-2013-1903 Password Disclosure Vulnerability
References:
References:
- E.1. Release 9.2.4 (PostgreSQL)
- PostgreSQL 9.2.4, 9.1.9, 9.0.13 and 8.4.17 released (PostgreSQL)
- PostgreSQL Homepage (PostgreSQL)
- PostgreSQL Security Information (PostgreSQL )