CVE-2005-1410
NONE EPSS 32.4%
Published May 3, 200521y ago · Modified Jun 16, 20262w ago
Published May 3, 2005 21y ago
Last Modified Jun 16, 2026 2w ago
Description
The tsearch2 module in PostgreSQL 7.4 through 8.0.x declares the (1) dex_init, (2) snb_en_init, (3) snb_ru_init, (4) spell_init, and (5) syn_init functions as "internal" even when they do not take an internal argument, which allows attackers to cause a denial of service (application crash) and possibly have other impacts via SQL commands that call other functions that accept internal arguments.
Threat Intelligence
EPSS Exploit Probability
32.4% percentile
Exploit & Patch Status
No Known Exploit
Patch Available
Affected Products 9
| Vendor | Product | Version | Range |
|---|---|---|---|
| postgresql | postgresql | 7.4 | any |
| postgresql | postgresql | 7.4.3 | any |
| postgresql | postgresql | 7.4.5 | any |
| postgresql | postgresql | 7.4.6 | any |
| postgresql | postgresql | 7.4.7 | any |
| postgresql | postgresql | 8.0 | any |
| postgresql | postgresql | 8.0.1 | any |
| postgresql | postgresql | 8.0.2 | any |
| trustix | secure_linux | 2.0 | any |
References 9
- archives.postgresql.org http://archives.postgresql.org/pgsql-announce/2005-05/msg00001.php
- novell.com http://www.novell.com/linux/security/advisories/2005_36_sudo.html
- postgresql.org http://www.postgresql.org/about/news.315
- redhat.com http://www.redhat.com/support/errata/RHSA-2005-433.html
- securityfocus.com http://www.securityfocus.com/archive/1/426302/30/6680/threaded
- securityfocus.com http://www.securityfocus.com/bid/13475
- vupen.com http://www.vupen.com/english/advisories/2005/0453
- oval.cisecurity.org https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1086
- oval.cisecurity.org https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9343
Remediation
- archives.postgresql.org http://archives.postgresql.org/pgsql-announce/2005-05/msg00001.php
- postgresql.org http://www.postgresql.org/about/news.315
- securityfocus.com http://www.securityfocus.com/bid/13475