// For flags

CVE-2006-2314

 

Severity Score

7.5
*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

PostgreSQL 8.1.x before 8.1.4, 8.0.x before 8.0.8, 7.4.x before 7.4.13, 7.3.x before 7.3.15, and earlier versions allows context-dependent attackers to bypass SQL injection protection methods in applications that use multibyte encodings that allow the "\" (backslash) byte 0x5c to be the trailing byte of a multibyte character, such as SJIS, BIG5, GBK, GB18030, and UHC, which cannot be handled correctly by a client that does not understand multibyte encodings, aka a second variant of "Encoding-Based SQL Injection." NOTE: it could be argued that this is a class of issue related to interaction errors between the client and PostgreSQL, but a CVE has been assigned since PostgreSQL is treating this as a preventative measure against this class of problem.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Authentication
None
Confidentiality
Partial
Integrity
Partial
Availability
Partial
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2006-05-11 CVE Reserved
  • 2006-05-24 CVE Published
  • 2024-08-07 CVE Updated
  • 2024-09-12 EPSS Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
CAPEC
References (36)
URL Date SRC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Postgresql
Search vendor "Postgresql"
Postgresql
Search vendor "Postgresql" for product "Postgresql"
7.3
Search vendor "Postgresql" for product "Postgresql" and version "7.3"
-
Affected
Postgresql
Search vendor "Postgresql"
Postgresql
Search vendor "Postgresql" for product "Postgresql"
7.3.1
Search vendor "Postgresql" for product "Postgresql" and version "7.3.1"
-
Affected
Postgresql
Search vendor "Postgresql"
Postgresql
Search vendor "Postgresql" for product "Postgresql"
7.3.2
Search vendor "Postgresql" for product "Postgresql" and version "7.3.2"
-
Affected
Postgresql
Search vendor "Postgresql"
Postgresql
Search vendor "Postgresql" for product "Postgresql"
7.3.3
Search vendor "Postgresql" for product "Postgresql" and version "7.3.3"
-
Affected
Postgresql
Search vendor "Postgresql"
Postgresql
Search vendor "Postgresql" for product "Postgresql"
7.3.4
Search vendor "Postgresql" for product "Postgresql" and version "7.3.4"
-
Affected
Postgresql
Search vendor "Postgresql"
Postgresql
Search vendor "Postgresql" for product "Postgresql"
7.3.5
Search vendor "Postgresql" for product "Postgresql" and version "7.3.5"
-
Affected
Postgresql
Search vendor "Postgresql"
Postgresql
Search vendor "Postgresql" for product "Postgresql"
7.3.6
Search vendor "Postgresql" for product "Postgresql" and version "7.3.6"
-
Affected
Postgresql
Search vendor "Postgresql"
Postgresql
Search vendor "Postgresql" for product "Postgresql"
7.3.7
Search vendor "Postgresql" for product "Postgresql" and version "7.3.7"
-
Affected
Postgresql
Search vendor "Postgresql"
Postgresql
Search vendor "Postgresql" for product "Postgresql"
7.3.8
Search vendor "Postgresql" for product "Postgresql" and version "7.3.8"
-
Affected
Postgresql
Search vendor "Postgresql"
Postgresql
Search vendor "Postgresql" for product "Postgresql"
7.3.9
Search vendor "Postgresql" for product "Postgresql" and version "7.3.9"
-
Affected
Postgresql
Search vendor "Postgresql"
Postgresql
Search vendor "Postgresql" for product "Postgresql"
7.3.10
Search vendor "Postgresql" for product "Postgresql" and version "7.3.10"
-
Affected
Postgresql
Search vendor "Postgresql"
Postgresql
Search vendor "Postgresql" for product "Postgresql"
7.3.11
Search vendor "Postgresql" for product "Postgresql" and version "7.3.11"
-
Affected
Postgresql
Search vendor "Postgresql"
Postgresql
Search vendor "Postgresql" for product "Postgresql"
7.3.12
Search vendor "Postgresql" for product "Postgresql" and version "7.3.12"
-
Affected
Postgresql
Search vendor "Postgresql"
Postgresql
Search vendor "Postgresql" for product "Postgresql"
7.3.13
Search vendor "Postgresql" for product "Postgresql" and version "7.3.13"
-
Affected
Postgresql
Search vendor "Postgresql"
Postgresql
Search vendor "Postgresql" for product "Postgresql"
7.3.14
Search vendor "Postgresql" for product "Postgresql" and version "7.3.14"
-
Affected
Postgresql
Search vendor "Postgresql"
Postgresql
Search vendor "Postgresql" for product "Postgresql"
7.4
Search vendor "Postgresql" for product "Postgresql" and version "7.4"
-
Affected
Postgresql
Search vendor "Postgresql"
Postgresql
Search vendor "Postgresql" for product "Postgresql"
7.4.1
Search vendor "Postgresql" for product "Postgresql" and version "7.4.1"
-
Affected
Postgresql
Search vendor "Postgresql"
Postgresql
Search vendor "Postgresql" for product "Postgresql"
7.4.2
Search vendor "Postgresql" for product "Postgresql" and version "7.4.2"
-
Affected
Postgresql
Search vendor "Postgresql"
Postgresql
Search vendor "Postgresql" for product "Postgresql"
7.4.3
Search vendor "Postgresql" for product "Postgresql" and version "7.4.3"
-
Affected
Postgresql
Search vendor "Postgresql"
Postgresql
Search vendor "Postgresql" for product "Postgresql"
7.4.4
Search vendor "Postgresql" for product "Postgresql" and version "7.4.4"
-
Affected
Postgresql
Search vendor "Postgresql"
Postgresql
Search vendor "Postgresql" for product "Postgresql"
7.4.5
Search vendor "Postgresql" for product "Postgresql" and version "7.4.5"
-
Affected
Postgresql
Search vendor "Postgresql"
Postgresql
Search vendor "Postgresql" for product "Postgresql"
7.4.6
Search vendor "Postgresql" for product "Postgresql" and version "7.4.6"
-
Affected
Postgresql
Search vendor "Postgresql"
Postgresql
Search vendor "Postgresql" for product "Postgresql"
7.4.7
Search vendor "Postgresql" for product "Postgresql" and version "7.4.7"
-
Affected
Postgresql
Search vendor "Postgresql"
Postgresql
Search vendor "Postgresql" for product "Postgresql"
7.4.8
Search vendor "Postgresql" for product "Postgresql" and version "7.4.8"
-
Affected
Postgresql
Search vendor "Postgresql"
Postgresql
Search vendor "Postgresql" for product "Postgresql"
7.4.9
Search vendor "Postgresql" for product "Postgresql" and version "7.4.9"
-
Affected
Postgresql
Search vendor "Postgresql"
Postgresql
Search vendor "Postgresql" for product "Postgresql"
7.4.10
Search vendor "Postgresql" for product "Postgresql" and version "7.4.10"
-
Affected
Postgresql
Search vendor "Postgresql"
Postgresql
Search vendor "Postgresql" for product "Postgresql"
7.4.11
Search vendor "Postgresql" for product "Postgresql" and version "7.4.11"
-
Affected
Postgresql
Search vendor "Postgresql"
Postgresql
Search vendor "Postgresql" for product "Postgresql"
7.4.12
Search vendor "Postgresql" for product "Postgresql" and version "7.4.12"
-
Affected
Postgresql
Search vendor "Postgresql"
Postgresql
Search vendor "Postgresql" for product "Postgresql"
8.0
Search vendor "Postgresql" for product "Postgresql" and version "8.0"
-
Affected
Postgresql
Search vendor "Postgresql"
Postgresql
Search vendor "Postgresql" for product "Postgresql"
8.0.1
Search vendor "Postgresql" for product "Postgresql" and version "8.0.1"
-
Affected
Postgresql
Search vendor "Postgresql"
Postgresql
Search vendor "Postgresql" for product "Postgresql"
8.0.2
Search vendor "Postgresql" for product "Postgresql" and version "8.0.2"
-
Affected
Postgresql
Search vendor "Postgresql"
Postgresql
Search vendor "Postgresql" for product "Postgresql"
8.0.3
Search vendor "Postgresql" for product "Postgresql" and version "8.0.3"
-
Affected
Postgresql
Search vendor "Postgresql"
Postgresql
Search vendor "Postgresql" for product "Postgresql"
8.0.4
Search vendor "Postgresql" for product "Postgresql" and version "8.0.4"
-
Affected
Postgresql
Search vendor "Postgresql"
Postgresql
Search vendor "Postgresql" for product "Postgresql"
8.0.5
Search vendor "Postgresql" for product "Postgresql" and version "8.0.5"
-
Affected
Postgresql
Search vendor "Postgresql"
Postgresql
Search vendor "Postgresql" for product "Postgresql"
8.0.6
Search vendor "Postgresql" for product "Postgresql" and version "8.0.6"
-
Affected
Postgresql
Search vendor "Postgresql"
Postgresql
Search vendor "Postgresql" for product "Postgresql"
8.0.7
Search vendor "Postgresql" for product "Postgresql" and version "8.0.7"
-
Affected
Postgresql
Search vendor "Postgresql"
Postgresql
Search vendor "Postgresql" for product "Postgresql"
8.1
Search vendor "Postgresql" for product "Postgresql" and version "8.1"
-
Affected
Postgresql
Search vendor "Postgresql"
Postgresql
Search vendor "Postgresql" for product "Postgresql"
8.1.1
Search vendor "Postgresql" for product "Postgresql" and version "8.1.1"
-
Affected
Postgresql
Search vendor "Postgresql"
Postgresql
Search vendor "Postgresql" for product "Postgresql"
8.1.2
Search vendor "Postgresql" for product "Postgresql" and version "8.1.2"
-
Affected
Postgresql
Search vendor "Postgresql"
Postgresql
Search vendor "Postgresql" for product "Postgresql"
8.1.3
Search vendor "Postgresql" for product "Postgresql" and version "8.1.3"
-
Affected