CVSS: 9.1EPSS: 0%CPEs: 9EXPL: 0CVE-2005-1410
https://notcve.org/view.php?id=CVE-2005-1410
03 May 2005 — The tsearch2 module in PostgreSQL 7.4 through 8.0.x declares the (1) dex_init, (2) snb_en_init, (3) snb_ru_init, (4) spell_init, and (5) syn_init functions as "internal" even when they do not take an internal argument, which allows attackers to cause a denial of service (application crash) and possibly have other impacts via SQL commands that call other functions that accept internal arguments. • http://archives.postgresql.org/pgsql-announce/2005-05/msg00001.php •
CVSS: 9.8EPSS: 1%CPEs: 28EXPL: 0CVE-2005-0247
https://notcve.org/view.php?id=CVE-2005-0247
08 Feb 2005 — Multiple buffer overflows in gram.y for PostgreSQL 8.0.1 and earlier may allow attackers to execute arbitrary code via (1) a large number of variables in a SQL statement being handled by the read_sql_construct function, (2) a large number of INTO variables in a SELECT statement being handled by the make_select_stmt function, (3) a large number of arbitrary variables in a SELECT statement being handled by the make_select_stmt function, and (4) a large number of INTO variables in a FETCH statement being handl... • http://archives.postgresql.org/pgsql-committers/2005-02/msg00049.php • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •