Format string vulnerabilities in DBD::Pg module allow remote PostgreSQL servers to cause denial of service

Format string vulnerabilities in DBD::Pg module allow remote PostgreSQL servers to cause denial of service

CVE-2012-1151 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

Multiple format string vulnerabilities in dbdimp.c in DBD::Pg (aka DBD-Pg or libdbd-pg-perl) module before 2.19.0 for Perl allow remote PostgreSQL database servers to cause a denial of service (process crash) via format string specifiers in (1) a crafted database warning to the pg_warn function or (2) a crafted DBD statement to the dbd_st_prepare function.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.