CVE-2010-4015

PostgreSQL: Stack-based buffer overflow by processing certain tokens from SQL query string when intarray module enabled

Severity Score

6.5

*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

Buffer overflow in the gettoken function in contrib/intarray/_int_bool.c in the intarray array module in PostgreSQL 9.0.x before 9.0.3, 8.4.x before 8.4.7, 8.3.x before 8.3.14, and 8.2.x before 8.2.20 allows remote authenticated users to cause a denial of service (crash) and possibly execute arbitrary code via integers with a large number of digits to unspecified functions.

Desbordamiento de búfer en la función gettoken en contrib/intarray/_int_bool.c en el módulo de matriz intArray de PostgreSQL v9.0.x anterior a v9.0.3, v8.4.x anterior a v8.4.7, v8.3.x anterior a v8.3.14, y v8.2.x anterior a v8.2.20 permite a usuarios autenticados remotamente causar una denegación de servicio (caída) y posiblemente ejecucar código de su elección a través de enteros con un gran número de dígitos en funciones no especificadas

*Credits: N/A

Attack Vector

Network

Attack Complexity

Low

Authentication

Single

Confidentiality

Partial

Integrity

Partial

Availability

Partial

Attack Vector

Adjacent

Attack Complexity

Medium

Authentication

Single

Confidentiality

Partial

Integrity

Partial

Availability

Partial

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2010-10-20 CVE Reserved
2011-02-02 CVE Published
2023-11-08 EPSS Updated
2024-08-07 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-121: Stack-based Buffer Overflow
CWE-189: Numeric Errors

CAPEC

References (31)

URL	Tag	Source
http://git.postgresql.org/gitweb?p=postgresql.git%3Ba=commitdiff%3Bh=7ccb6dc2d3e266a551827bb99179708580f72431	X_refsource_confirm
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705	X_refsource_confirm
http://osvdb.org/70740	Vdb Entry
http://secunia.com/advisories/43154	Third Party Advisory
http://secunia.com/advisories/43155	Third Party Advisory
http://secunia.com/advisories/43187	Third Party Advisory
http://secunia.com/advisories/43188	Third Party Advisory
http://secunia.com/advisories/43240	Third Party Advisory
http://www.postgresql.org/about/news.1289	X_refsource_confirm
http://www.postgresql.org/support/security	X_refsource_confirm
http://www.securityfocus.com/bid/46084	Vdb Entry
http://www.vupen.com/english/advisories/2011/0278	Vdb Entry
http://www.vupen.com/english/advisories/2011/0283	Vdb Entry
http://www.vupen.com/english/advisories/2011/0287	Vdb Entry
http://www.vupen.com/english/advisories/2011/0299	Vdb Entry
http://www.vupen.com/english/advisories/2011/0303	Vdb Entry
http://www.vupen.com/english/advisories/2011/0349	Vdb Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/65060	Vdb Entry

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC
http://lists.fedoraproject.org/pipermail/package-announce/2011-February/053817.html	2023-11-07
http://lists.fedoraproject.org/pipermail/package-announce/2011-February/053888.html	2023-11-07
http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html	2023-11-07
http://marc.info/?l=bugtraq&m=134124585221119&w=2	2023-11-07
http://secunia.com/advisories/43144	2023-11-07
http://www.debian.org/security/2011/dsa-2157	2023-11-07
http://www.mandriva.com/security/advisories?name=MDVSA-2011:021	2023-11-07
http://www.redhat.com/support/errata/RHSA-2011-0197.html	2023-11-07
http://www.redhat.com/support/errata/RHSA-2011-0198.html	2023-11-07
http://www.ubuntu.com/usn/USN-1058-1	2023-11-07
http://www.vupen.com/english/advisories/2011/0262	2023-11-07
https://access.redhat.com/security/cve/CVE-2010-4015	2011-02-03
https://bugzilla.redhat.com/show_bug.cgi?id=664402	2011-02-03

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Postgresql Search vendor "Postgresql"		Postgresql Search vendor "Postgresql" for product "Postgresql"				8.3 Search vendor "Postgresql" for product "Postgresql" and version "8.3"		-		Affected
Postgresql Search vendor "Postgresql"		Postgresql Search vendor "Postgresql" for product "Postgresql"				8.3.1 Search vendor "Postgresql" for product "Postgresql" and version "8.3.1"		-		Affected
Postgresql Search vendor "Postgresql"		Postgresql Search vendor "Postgresql" for product "Postgresql"				8.3.2 Search vendor "Postgresql" for product "Postgresql" and version "8.3.2"		-		Affected
Postgresql Search vendor "Postgresql"		Postgresql Search vendor "Postgresql" for product "Postgresql"				8.3.3 Search vendor "Postgresql" for product "Postgresql" and version "8.3.3"		-		Affected
Postgresql Search vendor "Postgresql"		Postgresql Search vendor "Postgresql" for product "Postgresql"				8.3.4 Search vendor "Postgresql" for product "Postgresql" and version "8.3.4"		-		Affected
Postgresql Search vendor "Postgresql"		Postgresql Search vendor "Postgresql" for product "Postgresql"				8.3.5 Search vendor "Postgresql" for product "Postgresql" and version "8.3.5"		-		Affected
Postgresql Search vendor "Postgresql"		Postgresql Search vendor "Postgresql" for product "Postgresql"				8.3.6 Search vendor "Postgresql" for product "Postgresql" and version "8.3.6"		-		Affected
Postgresql Search vendor "Postgresql"		Postgresql Search vendor "Postgresql" for product "Postgresql"				8.3.7 Search vendor "Postgresql" for product "Postgresql" and version "8.3.7"		-		Affected
Postgresql Search vendor "Postgresql"		Postgresql Search vendor "Postgresql" for product "Postgresql"				8.3.8 Search vendor "Postgresql" for product "Postgresql" and version "8.3.8"		-		Affected
Postgresql Search vendor "Postgresql"		Postgresql Search vendor "Postgresql" for product "Postgresql"				8.3.9 Search vendor "Postgresql" for product "Postgresql" and version "8.3.9"		-		Affected
Postgresql Search vendor "Postgresql"		Postgresql Search vendor "Postgresql" for product "Postgresql"				8.3.10 Search vendor "Postgresql" for product "Postgresql" and version "8.3.10"		-		Affected
Postgresql Search vendor "Postgresql"		Postgresql Search vendor "Postgresql" for product "Postgresql"				8.3.11 Search vendor "Postgresql" for product "Postgresql" and version "8.3.11"		-		Affected
Postgresql Search vendor "Postgresql"		Postgresql Search vendor "Postgresql" for product "Postgresql"				8.3.12 Search vendor "Postgresql" for product "Postgresql" and version "8.3.12"		-		Affected
Postgresql Search vendor "Postgresql"		Postgresql Search vendor "Postgresql" for product "Postgresql"				8.3.13 Search vendor "Postgresql" for product "Postgresql" and version "8.3.13"		-		Affected
Postgresql Search vendor "Postgresql"		Postgresql Search vendor "Postgresql" for product "Postgresql"				9.0 Search vendor "Postgresql" for product "Postgresql" and version "9.0"		-		Affected
Postgresql Search vendor "Postgresql"		Postgresql Search vendor "Postgresql" for product "Postgresql"				9.0.1 Search vendor "Postgresql" for product "Postgresql" and version "9.0.1"		-		Affected
Postgresql Search vendor "Postgresql"		Postgresql Search vendor "Postgresql" for product "Postgresql"				9.0.2 Search vendor "Postgresql" for product "Postgresql" and version "9.0.2"		-		Affected
Postgresql Search vendor "Postgresql"		Postgresql Search vendor "Postgresql" for product "Postgresql"				8.4 Search vendor "Postgresql" for product "Postgresql" and version "8.4"		-		Affected
Postgresql Search vendor "Postgresql"		Postgresql Search vendor "Postgresql" for product "Postgresql"				8.4.1 Search vendor "Postgresql" for product "Postgresql" and version "8.4.1"		-		Affected
Postgresql Search vendor "Postgresql"		Postgresql Search vendor "Postgresql" for product "Postgresql"				8.4.2 Search vendor "Postgresql" for product "Postgresql" and version "8.4.2"		-		Affected
Postgresql Search vendor "Postgresql"		Postgresql Search vendor "Postgresql" for product "Postgresql"				8.4.3 Search vendor "Postgresql" for product "Postgresql" and version "8.4.3"		-		Affected
Postgresql Search vendor "Postgresql"		Postgresql Search vendor "Postgresql" for product "Postgresql"				8.4.4 Search vendor "Postgresql" for product "Postgresql" and version "8.4.4"		-		Affected
Postgresql Search vendor "Postgresql"		Postgresql Search vendor "Postgresql" for product "Postgresql"				8.4.5 Search vendor "Postgresql" for product "Postgresql" and version "8.4.5"		-		Affected
Postgresql Search vendor "Postgresql"		Postgresql Search vendor "Postgresql" for product "Postgresql"				8.4.6 Search vendor "Postgresql" for product "Postgresql" and version "8.4.6"		-		Affected
Postgresql Search vendor "Postgresql"		Postgresql Search vendor "Postgresql" for product "Postgresql"				8.2 Search vendor "Postgresql" for product "Postgresql" and version "8.2"		-		Affected
Postgresql Search vendor "Postgresql"		Postgresql Search vendor "Postgresql" for product "Postgresql"				8.2.1 Search vendor "Postgresql" for product "Postgresql" and version "8.2.1"		-		Affected
Postgresql Search vendor "Postgresql"		Postgresql Search vendor "Postgresql" for product "Postgresql"				8.2.2 Search vendor "Postgresql" for product "Postgresql" and version "8.2.2"		-		Affected
Postgresql Search vendor "Postgresql"		Postgresql Search vendor "Postgresql" for product "Postgresql"				8.2.3 Search vendor "Postgresql" for product "Postgresql" and version "8.2.3"		-		Affected
Postgresql Search vendor "Postgresql"		Postgresql Search vendor "Postgresql" for product "Postgresql"				8.2.4 Search vendor "Postgresql" for product "Postgresql" and version "8.2.4"		-		Affected
Postgresql Search vendor "Postgresql"		Postgresql Search vendor "Postgresql" for product "Postgresql"				8.2.5 Search vendor "Postgresql" for product "Postgresql" and version "8.2.5"		-		Affected
Postgresql Search vendor "Postgresql"		Postgresql Search vendor "Postgresql" for product "Postgresql"				8.2.6 Search vendor "Postgresql" for product "Postgresql" and version "8.2.6"		-		Affected
Postgresql Search vendor "Postgresql"		Postgresql Search vendor "Postgresql" for product "Postgresql"				8.2.7 Search vendor "Postgresql" for product "Postgresql" and version "8.2.7"		-		Affected
Postgresql Search vendor "Postgresql"		Postgresql Search vendor "Postgresql" for product "Postgresql"				8.2.8 Search vendor "Postgresql" for product "Postgresql" and version "8.2.8"		-		Affected
Postgresql Search vendor "Postgresql"		Postgresql Search vendor "Postgresql" for product "Postgresql"				8.2.9 Search vendor "Postgresql" for product "Postgresql" and version "8.2.9"		-		Affected
Postgresql Search vendor "Postgresql"		Postgresql Search vendor "Postgresql" for product "Postgresql"				8.2.10 Search vendor "Postgresql" for product "Postgresql" and version "8.2.10"		-		Affected
Postgresql Search vendor "Postgresql"		Postgresql Search vendor "Postgresql" for product "Postgresql"				8.2.11 Search vendor "Postgresql" for product "Postgresql" and version "8.2.11"		-		Affected
Postgresql Search vendor "Postgresql"		Postgresql Search vendor "Postgresql" for product "Postgresql"				8.2.12 Search vendor "Postgresql" for product "Postgresql" and version "8.2.12"		-		Affected
Postgresql Search vendor "Postgresql"		Postgresql Search vendor "Postgresql" for product "Postgresql"				8.2.13 Search vendor "Postgresql" for product "Postgresql" and version "8.2.13"		-		Affected
Postgresql Search vendor "Postgresql"		Postgresql Search vendor "Postgresql" for product "Postgresql"				8.2.14 Search vendor "Postgresql" for product "Postgresql" and version "8.2.14"		-		Affected
Postgresql Search vendor "Postgresql"		Postgresql Search vendor "Postgresql" for product "Postgresql"				8.2.15 Search vendor "Postgresql" for product "Postgresql" and version "8.2.15"		-		Affected
Postgresql Search vendor "Postgresql"		Postgresql Search vendor "Postgresql" for product "Postgresql"				8.2.16 Search vendor "Postgresql" for product "Postgresql" and version "8.2.16"		-		Affected
Postgresql Search vendor "Postgresql"		Postgresql Search vendor "Postgresql" for product "Postgresql"				8.2.17 Search vendor "Postgresql" for product "Postgresql" and version "8.2.17"		-		Affected
Postgresql Search vendor "Postgresql"		Postgresql Search vendor "Postgresql" for product "Postgresql"				8.2.18 Search vendor "Postgresql" for product "Postgresql" and version "8.2.18"		-		Affected
Postgresql Search vendor "Postgresql"		Postgresql Search vendor "Postgresql" for product "Postgresql"				8.2.19 Search vendor "Postgresql" for product "Postgresql" and version "8.2.19"		-		Affected