Ubuntu 5.04 : pike7.6 vulnerability (USN-367-1)
High Nessus Plugin ID 27947
SynopsisThe remote Ubuntu host is missing one or more security-related patches.
DescriptionA SQL injection was discovered in Pike's PostgreSQL module.
Applications using a PostgreSQL database and uncommon character encodings could be fooled into running arbitrary SQL commands, which could result in privilege escalation within the application, application data exposure, or denial of service.
Please refer to http://www.ubuntu.com/usn/usn-288-1 for more detailled information.
Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
SolutionUpdate the affected packages.