- Home
- CVEs with oval.description==PostgreSQL+8.1.x+before+8.1.4%2C+8.0.x+before+8.0.8%2C+7.4.x+before+7.4.13%2C+7.3.x+before+7.3.15%2C+and+earlier+versions+allows+context-dependent+attackers+to+bypass+SQL+injection+protection+methods+in+applications+that+use+multibyte+encodings+that+allow+the+%22%5C%22+%28backslash%29+byte+0x5c+to+be+the+trailing+byte+of+a+multibyte+character%2C+such+as+SJIS%2C+BIG5%2C+GBK%2C+GB18030%2C+and+UHC%2C+which+cannot+be+handled+correctly+by+a+client+that+does+not+understand+multibyte+encodings%2C+aka+a+second+variant+of+%22Encoding-Based+SQL+Injection.%22+NOTE%3A+it+could+be+argued+that+this+is+a+class+of+issue+related+to+interaction+errors+between+the+client+and+PostgreSQL%2C+but+a+CVE+has+been+assigned+since+PostgreSQL+is+treating+this+as+a+preventative+measure+against+this+class+of+problem
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top