Skip site navigation (1) Skip section navigation (2)

Re: a vulnerability in PostgreSQL

From: Bruce Momjian <pgman(at)candle(dot)pha(dot)pa(dot)us>
To: Tatsuo Ishii <t-ishii(at)sra(dot)co(dot)jp>
Cc: lyeoh(at)pop(dot)jaring(dot)my, pgsql-hackers(at)postgresql(dot)org
Subject: Re: a vulnerability in PostgreSQL
Date: 2002-06-12 18:11:53
Message-ID: 200206121811.g5CIBrO12840@candle.pha.pa.us (view raw, whole thread or download thread mbox)
Thread:
Lists: pgsql-hackers
Do we need to do any more work to document this problem?

---------------------------------------------------------------------------

Tatsuo Ishii wrote:
> > Oops. How about:
> > 
> > foo'; DROP TABLE t1; -- foo
> > 
> > The last ' gets removed, leaving -- (81a2).
> > 
> > So you get:
> > select ... '(0x81a2)'; DROP TABLE t1; -- (0x81a2)
> 
> This surely works:-< Ok, you gave me an enough example that shows even
> 7.1.x and 7.0.x are not safe.
> 
> Included are patches for 7.1.3. Patches for 7.0.3 and 6.5.3 will be
> posted soon.

[ Attachment, skipping... ]

> 
> ---------------------------(end of broadcast)---------------------------
> TIP 3: if posting/reading through Usenet, please send an appropriate
> subscribe-nomail command to majordomo(at)postgresql(dot)org so that your
> message can get through to the mailing list cleanly

-- 
  Bruce Momjian                        |  http://candle.pha.pa.us
  pgman(at)candle(dot)pha(dot)pa(dot)us               |  (610) 853-3000
  +  If your life is a hard drive,     |  830 Blythe Avenue
  +  Christ can be your backup.        |  Drexel Hill, Pennsylvania 19026

In response to

Responses

pgsql-hackers by date

Next:From: Manfred KoizarDate: 2002-06-12 18:14:13
Subject: Re: Optimising inside transactions
Previous:From: Dann CorbitDate: 2002-06-12 18:00:26
Subject: Re: PostGres Doubt

Privacy Policy | About PostgreSQL
Copyright © 1996-2018 The PostgreSQL Global Development Group