PostgreSQL/CVE-2009-3231.json

{
    "CVE-ID": "CVE-2009-3231",
    "NVD": {
        "Descriptions": "The core server component in PostgreSQL 8.3 before 8.3.8 and 8.2 before 8.2.14, when using LDAP authentication with anonymous binds, allows remote attackers to bypass authentication via an empty password.",
        "Cvss2_BaseScore": 6.8,
        "Cvss3_BaseScore": 0,
        "Cvss2_VectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
        "Cvss3_VectorString": "",
        "CPEs": [
            {
                "URI": "cpe:/o:suse:linux_enterprise_server:9",
                "FormattedString": "cpe:2.3:o:suse:linux_enterprise_server:9:*:*:*:*:*:*:*",
                "VersionStartExcluding": "",
                "VersionStartIncluding": "",
                "VersionEndExcluding": "",
                "VersionEndIncluding": ""
            },
            {
                "URI": "cpe:/o:suse:linux_enterprise:11.0:-",
                "FormattedString": "cpe:2.3:o:suse:linux_enterprise:11.0:-:*:*:*:*:*:*",
                "VersionStartExcluding": "",
                "VersionStartIncluding": "",
                "VersionEndExcluding": "",
                "VersionEndIncluding": ""
            },
            {
                "URI": "cpe:/o:suse:linux_enterprise:10.0:sp2",
                "FormattedString": "cpe:2.3:o:suse:linux_enterprise:10.0:sp2:*:*:*:*:*:*",
                "VersionStartExcluding": "",
                "VersionStartIncluding": "",
                "VersionEndExcluding": "",
                "VersionEndIncluding": ""
            },
            {
                "URI": "cpe:/o:opensuse:opensuse",
                "FormattedString": "cpe:2.3:o:opensuse:opensuse:*:*:*:*:*:*:*:*",
                "VersionStartExcluding": "",
                "VersionStartIncluding": "10.3",
                "VersionEndExcluding": "",
                "VersionEndIncluding": "11.1"
            },
            {
                "URI": "cpe:/o:fedoraproject:fedora:11",
                "FormattedString": "cpe:2.3:o:fedoraproject:fedora:11:*:*:*:*:*:*:*",
                "VersionStartExcluding": "",
                "VersionStartIncluding": "",
                "VersionEndExcluding": "",
                "VersionEndIncluding": ""
            },
            {
                "URI": "cpe:/o:fedoraproject:fedora:10",
                "FormattedString": "cpe:2.3:o:fedoraproject:fedora:10:*:*:*:*:*:*:*",
                "VersionStartExcluding": "",
                "VersionStartIncluding": "",
                "VersionEndExcluding": "",
                "VersionEndIncluding": ""
            },
            {
                "URI": "cpe:/o:canonical:ubuntu_linux:9.04",
                "FormattedString": "cpe:2.3:o:canonical:ubuntu_linux:9.04:*:*:*:*:*:*:*",
                "VersionStartExcluding": "",
                "VersionStartIncluding": "",
                "VersionEndExcluding": "",
                "VersionEndIncluding": ""
            },
            {
                "URI": "cpe:/o:canonical:ubuntu_linux:8.10",
                "FormattedString": "cpe:2.3:o:canonical:ubuntu_linux:8.10:*:*:*:*:*:*:*",
                "VersionStartExcluding": "",
                "VersionStartIncluding": "",
                "VersionEndExcluding": "",
                "VersionEndIncluding": ""
            },
            {
                "URI": "cpe:/o:canonical:ubuntu_linux:8.04::~~-~~~",
                "FormattedString": "cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:-:*:*:*",
                "VersionStartExcluding": "",
                "VersionStartIncluding": "",
                "VersionEndExcluding": "",
                "VersionEndIncluding": ""
            },
            {
                "URI": "cpe:/o:canonical:ubuntu_linux:6.06",
                "FormattedString": "cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:*:*:*:*",
                "VersionStartExcluding": "",
                "VersionStartIncluding": "",
                "VersionEndExcluding": "",
                "VersionEndIncluding": ""
            },
            {
                "URI": "cpe:/a:postgresql:postgresql",
                "FormattedString": "cpe:2.3:a:postgresql:postgresql:*:*:*:*:*:*:*:*",
                "VersionStartExcluding": "",
                "VersionStartIncluding": "8.2",
                "VersionEndExcluding": "8.2.14",
                "VersionEndIncluding": ""
            },
            {
                "URI": "cpe:/a:postgresql:postgresql",
                "FormattedString": "cpe:2.3:a:postgresql:postgresql:*:*:*:*:*:*:*:*",
                "VersionStartExcluding": "",
                "VersionStartIncluding": "8.3",
                "VersionEndExcluding": "8.3.8",
                "VersionEndIncluding": ""
            }
        ]
    },
    "Official": {
        "8.2.14": {
            "source": [
                "https://www.postgresql.org/support/security/8.2/"
            ]
        },
        "8.3.8": {
            "source": [
                "https://www.postgresql.org/support/security/8.3/"
            ]
        }
    }
}