Apache < 2.0.3 mod_auth_pgsql Module Server Log Format String
Critical Nessus Network Monitor Plugin ID 3358
SynopsisThe remote host is vulnerable to a remote 'format string' flaw.
DescriptionThe remote host is running the Apache mod_auth_pgsql module, a module for authenticating remote users against a PostgreSQL database. This version of mod_auth_pgsql is vulnerable to multiple format string flaws. An attacker exploiting these flaws would be able to execute arbitrary code on the remote web server.
SolutionUpgrade to version 2.0.3 or higher.