CVE-2005-0245
published 2005-02-01CVE-2005-0245: Buffer overflow in gram.y for PostgreSQL 8.0.0 and earlier may allow attackers to execute arbitrary code via a large number of arguments to a refcursor…
PriorityP343high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
14.47%
96.2th percentile
Buffer overflow in gram.y for PostgreSQL 8.0.0 and earlier may allow attackers to execute arbitrary code via a large number of arguments to a refcursor function (gram.y), which leads to a heap-based buffer overflow, a different vulnerability than CVE-2005-0247.
Affected
31 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| postgresql | postgresql | — | — |
| postgresql | postgresql | — | — |
| postgresql | postgresql | — | — |
| postgresql | postgresql | — | — |
| postgresql | postgresql | — | — |
| postgresql | postgresql | — | — |
| postgresql | postgresql | — | — |
| postgresql | postgresql | — | — |
| postgresql | postgresql | — | — |
| postgresql | postgresql | — | — |
| postgresql | postgresql | — | — |
| postgresql | postgresql | — | — |
| postgresql | postgresql | — | — |
| postgresql | postgresql | — | — |
| postgresql | postgresql | — | — |
| postgresql | postgresql | — | — |
| postgresql | postgresql | — | — |
| postgresql | postgresql | — | — |
| postgresql | postgresql | — | — |
| postgresql | postgresql | — | — |
| postgresql | postgresql | — | — |
| postgresql | postgresql | — | — |
| postgresql | postgresql | — | — |
| postgresql | postgresql | — | — |
| postgresql | postgresql | — | — |
CVSS provenance
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
vendor_redhat7.5HIGH
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-ggh8-6p3g-2rw7: Multiple buffer overflows in gram
ghsa_unreviewed·2022-05-01·CVSS 7.5
CVE-2005-0247 [HIGH] CWE-119 GHSA-ggh8-6p3g-2rw7: Multiple buffer overflows in gram
Multiple buffer overflows in gram.y for PostgreSQL 8.0.1 and earlier may allow attackers to execute arbitrary code via (1) a large number of variables in a SQL statement being handled by the read_sql_construct function, (2) a large number of INTO variables in a SELECT statement being handled by the make_select_stmt function, (3) a large number of arbitrary variables in a SELECT statement being handled by the make_select_stmt function, and (4) a large number of INTO variables in a FETCH statement being handled by the make_fetch_stmt function, a different set of vulnerabilities than CVE-2005-0245.
GHSA
GHSA-8r34-wff9-3x69: Buffer overflow in gram
ghsa_unreviewed·2022-05-01·CVSS 6.5
CVE-2005-0245 [MEDIUM] GHSA-8r34-wff9-3x69: Buffer overflow in gram
Buffer overflow in gram.y for PostgreSQL 8.0.0 and earlier may allow attackers to execute arbitrary code via a large number of arguments to a refcursor function (gram.y), which leads to a heap-based buffer overflow, a different vulnerability than CVE-2005-0247.
Ubuntu
PostgreSQL vulnerabilities
vendor_ubuntu·2005-02-11
CVE-2005-0246 PostgreSQL vulnerabilities
Title: PostgreSQL vulnerabilities
Summary: PostgreSQL vulnerabilities
The execution of custom PostgreSQL functions can be restricted with
the EXECUTE privilege. However, previous versions did not check this
privilege when executing a function which was part of an aggregate.
As a result, any database user could circumvent the EXECUTE restriction of
functions with a particular (but very common) parameter structure by
creating an aggregate wrapper around the function. (CAN-2005-0244)
Several buffer overflows have been discovered in the SQL parser. These
could be exploited by any database user to crash the PostgreSQL server
or execute arbitrary code with the privileges of the server.
(CAN-2005-0245, CAN-2005-0247)
Finally, this update fixes a Denial of Service vulnerability of the
contribu
Red Hat
security flaw
vendor_redhat·2005-02-01·CVSS 7.5
CVE-2005-0247 [HIGH] security flaw
security flaw
Multiple buffer overflows in gram.y for PostgreSQL 8.0.1 and earlier may allow attackers to execute arbitrary code via (1) a large number of variables in a SQL statement being handled by the read_sql_construct function, (2) a large number of INTO variables in a SELECT statement being handled by the make_select_stmt function, (3) a large number of arbitrary variables in a SELECT statement being handled by the make_select_stmt function, and (4) a large number of INTO variables in a FETCH statement being handled by the make_fetch_stmt function, a different set of vulnerabilities than CVE-2005-0245.
Red Hat
security flaw
vendor_redhat·2005-01-20·CVSS 7.5
CVE-2005-0245 [HIGH] security flaw
security flaw
Buffer overflow in gram.y for PostgreSQL 8.0.0 and earlier may allow attackers to execute arbitrary code via a large number of arguments to a refcursor function (gram.y), which leads to a heap-based buffer overflow, a different vulnerability than CVE-2005-0247.
No detection rules found.
Bugzilla
CVE-2005-0245 security flaw
bugzilla·2018-08-16·CVSS 7.5
CVE-2005-0245 [HIGH] CVE-2005-0245 security flaw
CVE-2005-0245 security flaw
Flaw bug created to hold information about an old flaw we knew something about. For more details see the MITRE CVE description.
Discussion:
MITRE description:
Buffer overflow in gram.y for PostgreSQL 8.0.0 and earlier may allow attackers to execute arbitrary code via a large number of arguments to a refcursor function (gram.y), which leads to a heap-based buffer overflow, a different vulnerability than CVE-2005-0247.
Bugzilla
CVE-2005-0247 security flaw
bugzilla·2018-08-16·CVSS 7.5
CVE-2005-0247 [HIGH] CVE-2005-0247 security flaw
CVE-2005-0247 security flaw
Flaw bug created to hold information about an old flaw we knew something about. For more details see the MITRE CVE description.
Discussion:
MITRE description:
Multiple buffer overflows in gram.y for PostgreSQL 8.0.1 and earlier may allow attackers to execute arbitrary code via (1) a large number of variables in a SQL statement being handled by the read_sql_construct function, (2) a large number of INTO variables in a SELECT statement being handled by the make_select_stmt function, (3) a large number of arbitrary variables in a SELECT statement being handled by the make_select_stmt function, and (4) a large number of INTO variables in a FETCH statement being handled by the make_fetch_stmt function, a different set of vulnerabilities than CVE-2005-0245.
http://archives.postgresql.org/pgsql-committers/2005-01/msg00298.phphttp://archives.postgresql.org/pgsql-committers/2005-02/msg00049.phphttp://archives.postgresql.org/pgsql-patches/2005-01/msg00216.phphttp://marc.info/?l=bugtraq&m=110806034116082&w=2http://secunia.com/advisories/12948http://www.debian.org/security/2005/dsa-683http://www.mandriva.com/security/advisories?name=MDKSA-2005:040http://www.novell.com/linux/security/advisories/2005_36_sudo.htmlhttp://www.redhat.com/support/errata/RHSA-2005-138.htmlhttp://www.redhat.com/support/errata/RHSA-2005-150.htmlhttp://www.securityfocus.com/bid/12417https://exchange.xforce.ibmcloud.com/vulnerabilities/19188https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10175http://archives.postgresql.org/pgsql-committers/2005-01/msg00298.phphttp://archives.postgresql.org/pgsql-committers/2005-02/msg00049.phphttp://archives.postgresql.org/pgsql-patches/2005-01/msg00216.phphttp://marc.info/?l=bugtraq&m=110806034116082&w=2http://secunia.com/advisories/12948http://www.debian.org/security/2005/dsa-683http://www.mandriva.com/security/advisories?name=MDKSA-2005:040http://www.novell.com/linux/security/advisories/2005_36_sudo.htmlhttp://www.redhat.com/support/errata/RHSA-2005-138.htmlhttp://www.redhat.com/support/errata/RHSA-2005-150.htmlhttp://www.securityfocus.com/bid/12417https://exchange.xforce.ibmcloud.com/vulnerabilities/19188https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10175
2005-02-01
Published