← back
CVE-2002-0802

CVE-2002-0802

EPSS 1.1%
The multibyte support in PostgreSQL 6.5.x with SQL_ASCII encoding consumes an extra character when processing a character that cannot be converted, which could remove an escape character from the query and make the application subject to SQL injection attacks.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://marc.info/?l=postgresql-general&m=102032794322362http://www.iss.net/security_center/static/10328.phphttp://www.redhat.com/support/errata/RHSA-2002-149.html