The core server component in PostgreSQL 8.3 prior to 8.3.8 and 8.2 prior to 8.2.14, when using LDAP authentication with anonymous binds, allows remote malicious users to bypass authentication via an empty password.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
postgresql postgresql |
||
suse linux enterprise server 9 |
||
suse linux enterprise 11.0 |
||
opensuse opensuse |
||
suse linux enterprise 10.0 |
||
fedoraproject fedora 11 |
||
fedoraproject fedora 10 |
||
canonical ubuntu linux 9.04 |
||
canonical ubuntu linux 8.10 |
||
canonical ubuntu linux 8.04 |
||
canonical ubuntu linux 6.06 |