Vulnerabilities > CVE-2012-1151 - USE of Externally-Controlled Format String vulnerability in Perl
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
PARTIAL Summary
Multiple format string vulnerabilities in dbdimp.c in DBD::Pg (aka DBD-Pg or libdbd-pg-perl) module before 2.19.0 for Perl allow remote PostgreSQL database servers to cause a denial of service (process crash) via format string specifiers in (1) a crafted database warning to the pg_warn function or (2) a crafted DBD statement to the dbd_st_prepare function.
Vulnerable Configurations
Common Weakness Enumeration (CWE)
Common Attack Pattern Enumeration and Classification (CAPEC)
- Format String Injection An attacker includes formatting characters in a string input field on the target application. Most applications assume that users will provide static text and may respond unpredictably to the presence of formatting character. For example, in certain functions of the C programming languages such as printf, the formatting character %s will print the contents of a memory location expecting this location to identify a string and the formatting character %n prints the number of DWORD written in the memory. An attacker can use this to read or write to memory locations or files, or simply to manipulate the value of the resulting text in unexpected ways. Reading or writing memory may result in program crashes and writing memory could result in the execution of arbitrary code if the attacker can write to the program stack.
- String Format Overflow in syslog() This attack targets the format string vulnerabilities in the syslog() function. An attacker would typically inject malicious input in the format string parameter of the syslog function. This is a common problem, and many public vulnerabilities and associated exploits have been posted.
Nessus
NASL family SuSE Local Security Checks NASL id OPENSUSE-2012-180.NASL description perl-DBD-Pg was prone to format string errors which could crash applications last seen 2020-06-05 modified 2014-06-13 plugin id 74579 published 2014-06-13 reporter This script is Copyright (C) 2014-2020 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/74579 title openSUSE Security Update : perl-DBD-Pg (openSUSE-SU-2012:0422-1) NASL family Fedora Local Security Checks NASL id FEDORA_2012-10871.NASL description Update to latest upstream version, fixed the security bug CVE-2012-1151 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. last seen 2020-03-17 modified 2012-08-02 plugin id 61383 published 2012-08-02 reporter This script is Copyright (C) 2012-2020 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/61383 title Fedora 16 : perl-DBD-Pg-2.19.2-1.fc16 (2012-10871) NASL family Mandriva Local Security Checks NASL id MANDRIVA_MDVSA-2012-112.NASL description A vulnerability has been discovered and corrected in perl-DBD-Pg : Two format string flaws were found in the way perl-DBD-Pg. A rogue server could provide a specially crafted database warning or specially crafted DBD statement, which once processed by the perl-DBD-Pg interface would lead to perl-DBD-Pg based process crash (CVE-2012-1151). The updated packages have been patched to correct this issue. last seen 2020-06-01 modified 2020-06-02 plugin id 61965 published 2012-09-06 reporter This script is Copyright (C) 2012-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/61965 title Mandriva Linux Security Advisory : perl-DBD-Pg (MDVSA-2012:112) NASL family Gentoo Local Security Checks NASL id GENTOO_GLSA-201204-08.NASL description The remote host is affected by the vulnerability described in GLSA-201204-08 (Perl DBD-Pg Module: Arbitrary code execution) Format string vulnerabilities have been found in the the last seen 2020-06-01 modified 2020-06-02 plugin id 59624 published 2012-06-21 reporter This script is Copyright (C) 2012-2018 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/59624 title GLSA-201204-08 : Perl DBD-Pg Module: Arbitrary code execution NASL family Amazon Linux Local Security Checks NASL id ALA_ALAS-2012-112.NASL description Two format string flaws were found in perl-DBD-Pg. A specially crafted database warning or error message from a server could cause an application using perl-DBD-Pg to crash or, potentially, execute arbitrary code with the privileges of the user running the application. (CVE-2012-1151) last seen 2020-06-01 modified 2020-06-02 plugin id 69602 published 2013-09-04 reporter This script is Copyright (C) 2013-2018 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/69602 title Amazon Linux AMI : perl-DBD-Pg (ALAS-2012-112) NASL family Scientific Linux Local Security Checks NASL id SL_20120725_PERL_DBD_PG_ON_SL5_X.NASL description Perl DBI is a database access Application Programming Interface (API) for the Perl language. perl-DBD-Pg allows Perl applications to access PostgreSQL database servers. Two format string flaws were found in perl-DBD-Pg. A specially crafted database warning or error message from a server could cause an application using perl-DBD-Pg to crash or, potentially, execute arbitrary code with the privileges of the user running the application. (CVE-2012-1151) All users of perl-DBD-Pg are advised to upgrade to this updated package, which contains a backported patch to fix these issues. Applications using perl-DBD-Pg must be restarted for the update to take effect. last seen 2020-03-18 modified 2012-08-01 plugin id 61372 published 2012-08-01 reporter This script is Copyright (C) 2012-2020 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/61372 title Scientific Linux Security Update : perl-DBD-Pg on SL5.x, SL6.x i386/x86_64 (20120725) NASL family Oracle Linux Local Security Checks NASL id ORACLELINUX_ELSA-2012-1116.NASL description From Red Hat Security Advisory 2012:1116 : An updated perl-DBD-Pg package that fixes two security issues is now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. Perl DBI is a database access Application Programming Interface (API) for the Perl language. perl-DBD-Pg allows Perl applications to access PostgreSQL database servers. Two format string flaws were found in perl-DBD-Pg. A specially crafted database warning or error message from a server could cause an application using perl-DBD-Pg to crash or, potentially, execute arbitrary code with the privileges of the user running the application. (CVE-2012-1151) All users of perl-DBD-Pg are advised to upgrade to this updated package, which contains a backported patch to fix these issues. Applications using perl-DBD-Pg must be restarted for the update to take effect. last seen 2020-06-01 modified 2020-06-02 plugin id 68585 published 2013-07-12 reporter This script is Copyright (C) 2013-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/68585 title Oracle Linux 5 / 6 : perl-DBD-Pg (ELSA-2012-1116) NASL family Fedora Local Security Checks NASL id FEDORA_2012-10892.NASL description Update to latest upstream version, fixed the security bug CVE-2012-1151 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. last seen 2020-03-17 modified 2012-08-02 plugin id 61384 published 2012-08-02 reporter This script is Copyright (C) 2012-2020 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/61384 title Fedora 17 : perl-DBD-Pg-2.19.2-1.fc17 (2012-10892) NASL family Debian Local Security Checks NASL id DEBIAN_DSA-2431.NASL description Niko Tyni discovered two format string vulnerabilities in DBD::Pg, a Perl DBI driver for the PostgreSQL database server, which can be exploited by a rogue database server. last seen 2020-03-17 modified 2012-03-12 plugin id 58304 published 2012-03-12 reporter This script is Copyright (C) 2012-2020 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/58304 title Debian DSA-2431-1 : libdbd-pg-perl - format string vulnerabilities NASL family Red Hat Local Security Checks NASL id REDHAT-RHSA-2012-1116.NASL description An updated perl-DBD-Pg package that fixes two security issues is now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. Perl DBI is a database access Application Programming Interface (API) for the Perl language. perl-DBD-Pg allows Perl applications to access PostgreSQL database servers. Two format string flaws were found in perl-DBD-Pg. A specially crafted database warning or error message from a server could cause an application using perl-DBD-Pg to crash or, potentially, execute arbitrary code with the privileges of the user running the application. (CVE-2012-1151) All users of perl-DBD-Pg are advised to upgrade to this updated package, which contains a backported patch to fix these issues. Applications using perl-DBD-Pg must be restarted for the update to take effect. last seen 2020-06-01 modified 2020-06-02 plugin id 60124 published 2012-07-26 reporter This script is Copyright (C) 2012-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/60124 title RHEL 5 / 6 : perl-DBD-Pg (RHSA-2012:1116) NASL family CentOS Local Security Checks NASL id CENTOS_RHSA-2012-1116.NASL description An updated perl-DBD-Pg package that fixes two security issues is now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. Perl DBI is a database access Application Programming Interface (API) for the Perl language. perl-DBD-Pg allows Perl applications to access PostgreSQL database servers. Two format string flaws were found in perl-DBD-Pg. A specially crafted database warning or error message from a server could cause an application using perl-DBD-Pg to crash or, potentially, execute arbitrary code with the privileges of the user running the application. (CVE-2012-1151) All users of perl-DBD-Pg are advised to upgrade to this updated package, which contains a backported patch to fix these issues. Applications using perl-DBD-Pg must be restarted for the update to take effect. last seen 2020-06-01 modified 2020-06-02 plugin id 60121 published 2012-07-26 reporter This script is Copyright (C) 2012-2020 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/60121 title CentOS 5 / 6 : perl-DBD-Pg (CESA-2012:1116)
Redhat
| advisories |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||
| rpms |
|
References
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=661536
- http://cpansearch.perl.org/src/TURNSTEP/DBD-Pg-2.19.1/Changes
- http://rhn.redhat.com/errata/RHSA-2012-1116.html
- http://secunia.com/advisories/48307
- http://secunia.com/advisories/48319
- http://secunia.com/advisories/48824
- http://security.gentoo.org/glsa/glsa-201204-08.xml
- http://www.debian.org/security/2012/dsa-2431
- http://www.mandriva.com/security/advisories?name=MDVSA-2012:112
- http://www.openwall.com/lists/oss-security/2012/03/09/6
- http://www.openwall.com/lists/oss-security/2012/03/10/4
- https://bugzilla.redhat.com/show_bug.cgi?id=801733
- https://exchange.xforce.ibmcloud.com/vulnerabilities/73854
- https://exchange.xforce.ibmcloud.com/vulnerabilities/73855
- https://rt.cpan.org/Public/Bug/Display.html?id=75642