SQL Injection Vulnerability in PostgreSQL 6.5.x with SQL_ASCII Encoding

SQL Injection Vulnerability in PostgreSQL 6.5.x with SQL_ASCII Encoding

CVE-2002-0802 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

The multibyte support in PostgreSQL 6.5.x with SQL_ASCII encoding consumes an extra character when processing a character that cannot be converted, which could remove an escape character from the query and make the application subject to SQL injection attacks.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.