Debian Security Advisory DSA 759-1 (phppgadmin) Network Vulnerability

Summary

The remote host is missing an update to phppgadmin announced via advisory DSA 759-1. A vulnerability has been discovered in phppgadmin, a set of PHP scripts to administrate PostgreSQL over the WWW, that can lead to disclose sensitive information. Successful exploitation requires that magic_quotes_gpc is disabled. the old stable distribution (woody) is not affected by this problem.

Solution

For the stable distribution (sarge) this problem has been fixed in version 3.5.2-5. For the unstable distribution (sid) this problem has been fixed in version 3.5.4. We recommend that you upgrade your phppgadmin package. https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20759-1

Severity

Classification

CVE CVE-2005-2256

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:P/I:N/A:N

Related Vulnerabilities

Debian Security Advisory DSA 1112-1 (mysql-dfsg-4.1)
Debian Security Advisory DSA 1115-1 (gnupg2)
Debian Security Advisory DSA 1111-1 (kernel-source-2.6.8 et. al.)
Debian Security Advisory DSA 023-1 (inn2)
Debian Security Advisory DSA 1059-1 (quagga)

Take action and discover your vulnerabilities