Remote Denial of Service in PgBouncer before 1.5.5 via Password Packet

Remote Denial of Service in PgBouncer before 1.5.5 via Password Packet

CVE-2015-4054 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

PgBouncer before 1.5.5 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) by sending a password packet before a startup packet.

Learn more about our Web Application Penetration Testing UK.