CVE-2010-0733

PostgreSQL < 8.4.1 - Authenticated Denial of Service via Hashtable Size Calculation Overflow

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2010-0733. PoCs published by Bernt Marius Johnsen.

AI-analyzed exploit summary This exploit leverages a PostgreSQL vulnerability (CVE-2010-0733) by crafting a malformed SQL query with excessive JOIN operations to trigger a denial-of-service condition. The query manipulates memory allocation calculations, potentially causing the application to crash.

Description

Integer overflow in src/backend/executor/nodeHash.c in PostgreSQL 8.4.1 and earlier, and 8.5 through 8.5alpha2, allows remote authenticated users to cause a denial of service (daemon crash) via a SELECT statement with many LEFT JOIN clauses, related to certain hashtable size calculations.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Bernt Marius Johnsen · textdosmultiple
https://www.exploit-db.com/exploits/33729

This exploit leverages a PostgreSQL vulnerability (CVE-2010-0733) by crafting a malformed SQL query with excessive JOIN operations to trigger a denial-of-service condition. The query manipulates memory allocation calculations, potentially causing the application to crash.

Classification
Working Poc 90%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: PostgreSQL (versions prior to fix for CVE-2010-0733)
No auth needed
Prerequisites: Access to a PostgreSQL instance vulnerable to CVE-2010-0733
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (16)

Core 16
Core References
Various Sources mailing-list x_refsource_mlist
http://archives.postgresql.org/pgsql-bugs/2009-10/msg00277.php
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2010-0427.html
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2010-0428.html
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10691
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/39820
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/38619
Mailing List mailing-list x_refsource_mlist
http://www.openwall.com/lists/oss-security/2010/03/16/10
Various Sources mailing-list x_refsource_mlist
http://archives.postgresql.org/pgsql-bugs/2009-10/msg00310.php
Various Sources mailing-list x_refsource_mlist
http://archives.postgresql.org/pgsql-bugs/2009-10/msg00289.php
Mailing List mailing-list x_refsource_mlist
http://www.openwall.com/lists/oss-security/2010/03/09/2
Various Sources mailing-list x_refsource_mlist
http://archives.postgresql.org/pgsql-bugs/2009-10/msg00287.php
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2010-0429.html
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2010/1197

Scores

EPSS 0.0690
EPSS Percentile 93.3%

Details

CWE
CWE-189
Status published
Products (50)
postgresql/postgresql 8.0
postgresql/postgresql 8.0.0
postgresql/postgresql 8.0.1
postgresql/postgresql 8.0.2
postgresql/postgresql 8.0.3
postgresql/postgresql 8.0.4
postgresql/postgresql 8.0.5
postgresql/postgresql 8.0.6
postgresql/postgresql 8.0.7
postgresql/postgresql 8.0.8
... and 40 more
Published Mar 19, 2010
Tracked Since Feb 18, 2026