CVE-2000-1199
PostgreSQL - Plaintext Password Storage in pg_shadow and pg_pwd
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2000-1199. PoCs published by Robert van der Meulen.
AI-analyzed exploit summary This is a writeup describing an information disclosure vulnerability in PostgreSQL where database user passwords are stored in cleartext in the pg_shadow file, accessible to root and the postgres user. The example demonstrates using the 'strings' command to extract passwords from the file.
Description
PostgreSQL stores usernames and passwords in plaintext in (1) pg_shadow and (2) pg_pwd, which allows attackers with sufficient privileges to gain access to databases.
Exploits (1)
This is a writeup describing an information disclosure vulnerability in PostgreSQL where database user passwords are stored in cleartext in the pg_shadow file, accessible to root and the postgres user. The example demonstrates using the 'strings' command to extract passwords from the file.