Joerg Wendland LibNSS-PgSQL Remote SQL Query Manipulation Vulnerability

Joerg Wendland's 'libnss-pgsql' is a NSS(Name Service Switch) module for PostgreSQL.

The NSS database module 'libnss-pgsql' is prone to a vulnerability which will allow SQL queries to be manipulated via a HTTP request. Data that is included in SQL query strings is not adequately sanitized. It may be possible for malicious users to modify the structure of SQL queries.

It is believed that the attacker would need an interactive account on the vulnerable host to exploit this issue. Attacks will be executed on the database server as the database user that is making the query.

This issue allows the user to access resources that would normally be restricted, which may in turn provide an opportunity for the attacker to exploit other vulnerabilities that exist in the server.

L33tdawg: The list of vulnerable versions as well as the link to the patch is in the read more.
bugtraq id 3314
object libnss-pgsql (exec)
class Input Validation Error
cve CVE-MAP-NOMATCH
remote Yes
local No
published September 10, 2001
updated September 10, 2001
vulnerable Joerg Wendland libnss-pgsql 0.9.0
- PostgreSQL PostgreSQL 6.5.3
- PostgreSQL PostgreSQL 6.3.2

not vulnerable Joerg Wendland libnss-pgsql 0.9.1
- PostgreSQL PostgreSQL 6.5.3
- PostgreSQL PostgreSQL 6.3.2

The vendor has addressed this issue in a new release.

Joerg Wendland libnss-pgsql 0.9.0:

Joerg Wendland upgrade libnss-pgsql 0.9.1

http://sourceforge.net/project/showfiles.php?group_id=24083.