SQL Injection Vulnerability in PostgreSQL Authentication Modules

SQL Injection Vulnerability in PostgreSQL Authentication Modules

CVE-2001-1379 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

The PostgreSQL authentication modules (1) mod_auth_pgsql 0.9.5, and (2) mod_auth_pgsql_sys 0.9.4, allow remote attackers to bypass authentication and execute arbitrary SQL via a SQL injection attack on the user name.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.