Search for vulnerabilities
Vulnerability details: VCID-hw3n-46qm-aaad
Vulnerability ID VCID-hw3n-46qm-aaad
Aliases CVE-2005-0245
Summary Buffer overflow in gram.y for PostgreSQL 8.0.0 and earlier may allow attackers to execute arbitrary code via a large number of arguments to a refcursor function (gram.y), which leads to a heap-based buffer overflow, a different vulnerability than CVE-2005-0247.
Status Published
Exploitability 2.0
Weighted Severity 8.0
Risk 10.0
Affected and Fixed Packages Package Details
Weaknesses (0)
There are no known CWE.
System Score Found at
rhas Important https://access.redhat.com/errata/RHSA-2005:138
rhas Important https://access.redhat.com/errata/RHSA-2005:141
rhas Important https://access.redhat.com/errata/RHSA-2005:150
epss 0.01531 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.01531 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.01531 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.01531 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.01840 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.01840 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.01840 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.01840 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.01840 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.01840 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.01840 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.01840 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.01840 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.01840 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.01840 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.01840 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.22287 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
epss 0.23114 https://api.first.org/data/v1/epss?cve=CVE-2005-0245
rhbs medium https://bugzilla.redhat.com/show_bug.cgi?id=1617506
cvssv2 7.5 https://nvd.nist.gov/vuln/detail/CVE-2005-0245
Reference id Reference type URL
http://archives.postgresql.org/pgsql-committers/2005-01/msg00298.php
http://archives.postgresql.org/pgsql-committers/2005-02/msg00049.php
http://archives.postgresql.org/pgsql-patches/2005-01/msg00216.php
http://marc.info/?l=bugtraq&m=110806034116082&w=2
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-0245.json
https://api.first.org/data/v1/epss?cve=CVE-2005-0245
http://secunia.com/advisories/12948
https://exchange.xforce.ibmcloud.com/vulnerabilities/19188
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10175
https://www.postgresql.org/support/security/CVE-2005-0245/
http://www.debian.org/security/2005/dsa-683
http://www.mandriva.com/security/advisories?name=MDKSA-2005:040
http://www.novell.com/linux/security/advisories/2005_36_sudo.html
http://www.redhat.com/support/errata/RHSA-2005-138.html
http://www.redhat.com/support/errata/RHSA-2005-150.html
http://www.securityfocus.com/bid/12417
1617506 https://bugzilla.redhat.com/show_bug.cgi?id=1617506
cpe:2.3:a:postgresql:postgresql:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:*:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:7.2:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:7.2:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:7.2.1:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:7.2.1:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:7.2.2:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:7.2.2:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:7.2.3:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:7.2.3:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:7.2.4:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:7.2.4:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:7.2.5:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:7.2.5:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:7.2.6:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:7.2.6:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:7.2.7:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:7.2.7:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:7.3:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:7.3:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:7.3.1:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:7.3.1:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:7.3.2:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:7.3.2:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:7.3.3:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:7.3.3:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:7.3.4:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:7.3.4:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:7.3.5:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:7.3.5:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:7.3.6:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:7.3.6:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:7.3.7:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:7.3.7:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:7.3.8:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:7.3.8:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:7.3.9:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:7.3.9:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:7.4:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:7.4:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:7.4.1:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:7.4.1:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:7.4.2:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:7.4.2:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:7.4.3:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:7.4.3:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:7.4.4:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:7.4.4:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:7.4.5:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:7.4.5:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:7.4.6:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:7.4.6:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:7.4.7:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:7.4.7:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:8.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:8.0:*:*:*:*:*:*:*
CVE-2005-0245 https://nvd.nist.gov/vuln/detail/CVE-2005-0245
CVE-2005-0245;OSVDB-13774 Exploit https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/25076.c
CVE-2005-0245;OSVDB-13774 Exploit https://www.securityfocus.com/bid/12417/info
RHSA-2005:138 https://access.redhat.com/errata/RHSA-2005:138
RHSA-2005:141 https://access.redhat.com/errata/RHSA-2005:141
RHSA-2005:150 https://access.redhat.com/errata/RHSA-2005:150
USN-79-1 https://usn.ubuntu.com/79-1/
Data source Exploit-DB
Date added Feb. 1, 2005
Description PostgreSQL 7.x - Multiple Vulnerabilities
Ransomware campaign use Known
Source publication date Feb. 1, 2005
Exploit type dos
Platform linux
Source update date April 29, 2013
Source URL https://www.securityfocus.com/bid/12417/info
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P Found at https://nvd.nist.gov/vuln/detail/CVE-2005-0245
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Exploit Prediction Scoring System (EPSS)
Percentile 0.86740
EPSS Score 0.01531
Published At Dec. 17, 2024, midnight
Date Actor Action Source VulnerableCode Version
There are no relevant records.