CVE-2001-1379

Name of the Vulnerable Software and Affected Versions mod auth pgsql version 0.9.5 mod auth pgsql sys version 0.9.4

Description The issue allows remote attackers to bypass authentication and execute arbitrary SQL via a SQL injection attack on the user name. This can lead to unauthorized access and potential data manipulation.

Recommendations For mod auth pgsql version 0.9.5, update to a version that fixes the SQL injection issue. For mod auth pgsql sys version 0.9.4, update to a version that fixes the SQL injection issue. As a temporary workaround, consider restricting access to the authentication module to minimize the risk of exploitation.