PostgreSQL < 8.0.3 Incorrect Function Declaration
Medium Nessus Network Monitor Plugin ID 2876
SynopsisThe remote host is vulnerable to a flaw that allows for the bypassing of authentication.
DescriptionThe remote host is running PostgreSQL, an open source relational database. This version is vulnerable to a number of flaws. Specifically, the following functions are directly accessible to remote users:
An attacker calling these functions can submit queries that lead to compromise of confidential data or execution of arbitrary code on the remote database server.
SolutionUpgrade to PostgreSQL 8.0.3 or higher.