Oval Definition:oval:org.opensuse.security:def:20082380
Revision Date:2015-11-16Version:1
Title:CVE-2008-2380
Description:
SQL injection vulnerability in authpgsqllib.c in Courier-Authlib before 0.62.0, when a non-Latin locale Postgres database is used, allows remote attackers to execute arbitrary SQL commands via query parameters containing apostrophes.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2008-2380
Platform(s):openSUSE 10.3
openSUSE 11.0
openSUSE 11.1
Product(s):
Definition Synopsis
  • Release Information
  • suse111 is installed
  • AND
  • courier-authlib-devel less than 0.61.0-1.21.1
  • OR courier-authlib-ldap less than 0.61.0-1.21.1
  • OR courier-authlib-mysql less than 0.61.0-1.21.1
  • OR courier-authlib-pgsql less than 0.61.0-1.21.1
  • OR courier-authlib-pipe less than 0.61.0-1.21.1
  • OR courier-authlib-userdb less than 0.61.0-1.21.1
  • OR courier-authlib less than 0.61.0-1.21.1
  • OR Package Information
  • suse110 is installed
  • courier-authlib-devel less than 0.60.2-40.4
  • OR courier-authlib-ldap less than 0.60.2-40.4
  • OR courier-authlib-mysql less than 0.60.2-40.4
  • OR courier-authlib-pgsql less than 0.60.2-40.4
  • OR courier-authlib-pipe less than 0.60.2-40.4
  • OR courier-authlib-userdb less than 0.60.2-40.4
  • OR courier-authlib less than 0.60.2-40.4
  • OR
  • suse111 is installed
  • courier-authlib-devel less than 0.61.0-1.1
  • OR courier-authlib-ldap less than 0.61.0-1.1
  • OR courier-authlib-mysql less than 0.61.0-1.1
  • OR courier-authlib-pgsql less than 0.61.0-1.1
  • OR courier-authlib-pipe less than 0.61.0-1.1
  • OR courier-authlib-userdb less than 0.61.0-1.1
  • OR courier-authlib less than 0.61.0-1.1
    • BACK