CVE-2003-0040

5 documents5 sources

Severity

7.5HIGH

EPSS

0.5%

top 34.57%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Timeline

PublishedFeb 19

Latest updateApr 29

Description

SQL injection vulnerability in the PostgreSQL auth module for courier 0.40 and earlier allows remote attackers to execute SQL code via the user name.

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

▶Debiancourier< 0.40.2-3+3

GHSA

GHSA-vrgp-v3rr-v9mg: SQL injection vulnerability in the PostgreSQL auth module for courier 0↗2022-04-29

▶

CVEList

CVE-2003-0040: SQL injection vulnerability in the PostgreSQL auth module for courier 0↗2004-09-01

▶

OSV

CVE-2003-0040: SQL injection vulnerability in the PostgreSQL auth module for courier 0↗2003-02-19

▶

Debian

CVE-2003-0040: courier - SQL injection vulnerability in the PostgreSQL auth module for courier 0.40 and e...↗2003

▶