This script is Copyright (C) 2005-2013 Tenable Network Security, Inc.
The remote database server is affected by multiple vulnerabilities.
According to its banner, the version of PostgreSQL installed on the
remote host may suffer from the following vulnerabilities :
- Character Conversion Vulnerability
Unprivileged users can call functions supporting client-
server character set conversion from SQL commands even
though those functions do not validate their arguments.
- tsearch2 Vulnerability
If installed, the 'contrib/tsearch2' module permits users
to at a minimum crash the backend because it misdeclares
several functions as returning type 'internal' when in
fact they do not have any 'internal' argument.
See also :
Implement the changes described in the PostgreSQL advisory or upgrade
Risk factor :
Medium / CVSS Base Score : 6.5
CVSS Temporal Score : 4.8
Public Exploit Available : false