cbcvebase.
CVE-2005-0245
published 2005-02-01

CVE-2005-0245: Buffer overflow in gram.y for PostgreSQL 8.0.0 and earlier may allow attackers to execute arbitrary code via a large number of arguments to a refcursor…

PriorityP343high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
14.47%
96.2th percentile
Buffer overflow in gram.y for PostgreSQL 8.0.0 and earlier may allow attackers to execute arbitrary code via a large number of arguments to a refcursor function (gram.y), which leads to a heap-based buffer overflow, a different vulnerability than CVE-2005-0247.

Affected

31 ranges· showing 25
VendorProductVersion rangeFixed in
postgresqlpostgresql
postgresqlpostgresql
postgresqlpostgresql
postgresqlpostgresql
postgresqlpostgresql
postgresqlpostgresql
postgresqlpostgresql
postgresqlpostgresql
postgresqlpostgresql
postgresqlpostgresql
postgresqlpostgresql
postgresqlpostgresql
postgresqlpostgresql
postgresqlpostgresql
postgresqlpostgresql
postgresqlpostgresql
postgresqlpostgresql
postgresqlpostgresql
postgresqlpostgresql
postgresqlpostgresql
postgresqlpostgresql
postgresqlpostgresql
postgresqlpostgresql
postgresqlpostgresql
postgresqlpostgresql

CVSS provenance

nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
vendor_redhat7.5HIGH
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.