The remote host is missing an update to the system as announced in the referenced advisory.

Update your system with the appropriate patches or software upgrades. http://www.phpmyadmin.net/home_page/security.php?issue=PMASA-2005-1 http://marc.theaimsgroup.com/?l=bugtraq&m=110929725801154 http://www.vuxml.org/freebsd/882ef43b-901f-11d9-a22c-0001020eed82.html

The following packages are affected: phpmyadmin phpMyAdmin CVE-2005-0543 Cross-site scripting (XSS) vulnerability in phpMyAdmin 2.6.1 allows remote attackers to inject arbitrary HTML and web script via (1) the strServer, cfg[BgcolorOne], or strServerChoice parameters in select_server.lib.php, (2) the bg_color or row_no parameters in display_tbl_links.lib.php, the left_font_family parameter in theme_left.css.php, or the right_font_family parameter in theme_right.css.php. CVE-2005-0567 Multiple PHP remote code injection vulnerabilities in phpMyAdmin 2.6.1 allow remote attackers to execute arbitrary PHP code by modifying the (1) theme parameter to phpmyadmin.css.php or (2) cfg[Server][extension] parameter to database_interface.lib.php to reference a URL on a remote web server that contains the code.