FreeBSD Ports: Phpmyadmin, PhpMyAdmin Network Vulnerability

Summary

The remote host is missing an update to the system as announced in the referenced advisory.

Solution

Update your system with the appropriate patches or software upgrades. http://sourceforge.net/forum/forum.php?forum_id=450948 http://sourceforge.net/tracker/index.php?func=detail&aid=1113788&group_id=23067&atid=377408 http://www.vuxml.org/freebsd/6192ae3d-9595-11d9-a9e0-0001020eed82.html

Insight

The following packages are affected: phpmyadmin phpMyAdmin CVE-2005-0653 phpMyAdmin 2.6.1 does not properly grant permissions on tables with an underscore in the name, which grants remote authenticated users more privileges than intended.

Severity

Classification

CVE CVE-2005-0653

CVSS	Base Score: 4.6 AV:L/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

FreeBSD Ports: bugzilla
django -- multiple vulnerabilities
FreeBSD Ports: asterisk14
FreeBSD Ports: bugzilla, ja-bugzilla
FreeBSD Ports: awstats

FreeBSD Ports: phpmyadmin, phpMyAdmin

Take action and discover your vulnerabilities