Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.OPENSUSE-2013-524.NASL
HistoryJun 13, 2014 - 12:00 a.m.

openSUSE Security Update : phpMyAdmin (openSUSE-SU-2013:1065-1)

2014-06-1300:00:00
This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
30
JSON

This update of phpMyAdmin fixes several security issues.

  • update to 3.5.8.1 (2013-04-24)

  • [security] Remote code execution (preg_replace), reported by Janek Vind (see PMASA-2013-2)

  • [security] Locally Saved SQL Dump File Multiple File Extension Remote Code Execution, reported by Janek Vind (see PMASA-2013-3)

  • fix for bnc#824301

  • PMASA-2013-2 (CVE-2013-3238)

  • fix for bnc#824302

  • PMASA-2013-3 (CVE-2013-3239)

  • update to 3.5.8 (2013-04-08)

  • sf#3828 MariaDB reported as MySQL

  • sf#3854 Incorrect header for Safari 6.0

  • sf#3705 Attempt to open trigger for edit gives NULL

  • Use HTML5 DOCTYPE

  • [security] Self-XSS on GIS visualisation page, reported by Janek Vind see PMASA-2013-1

  • sf#3800 Incorrect keyhandler behaviour #2

  • fix for bnc#814678

  • PMASA-2013-1 (CVE-2013-1937)

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from openSUSE Security Update openSUSE-2013-524.
#
# The text description of this plugin is (C) SUSE LLC.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(75055);
  script_version("1.6");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/19");

  script_cve_id("CVE-2013-1937", "CVE-2013-3238", "CVE-2013-3239");

  script_name(english:"openSUSE Security Update : phpMyAdmin (openSUSE-SU-2013:1065-1)");
  script_summary(english:"Check for the openSUSE-2013-524 patch");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote openSUSE host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"This update of phpMyAdmin fixes several security issues.

  - update to 3.5.8.1 (2013-04-24)

  - [security] Remote code execution (preg_replace),
    reported by Janek Vind (see PMASA-2013-2)

  - [security] Locally Saved SQL Dump File Multiple File
    Extension Remote Code Execution, reported by Janek Vind
    (see PMASA-2013-3)

  - fix for bnc#824301

  - PMASA-2013-2 (CVE-2013-3238)

  - fix for bnc#824302

  - PMASA-2013-3 (CVE-2013-3239)

  - update to 3.5.8 (2013-04-08)

  - sf#3828 MariaDB reported as MySQL

  - sf#3854 Incorrect header for Safari 6.0

  - sf#3705 Attempt to open trigger for edit gives NULL

  - Use HTML5 DOCTYPE

  - [security] Self-XSS on GIS visualisation page, reported
    by Janek Vind see PMASA-2013-1

  - sf#3800 Incorrect keyhandler behaviour #2

  - fix for bnc#814678

  - PMASA-2013-1 (CVE-2013-1937)"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=814678"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=824301"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=824302"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://lists.opensuse.org/opensuse-updates/2013-06/msg00181.html"
  );
  script_set_attribute(
    attribute:"solution", 
    value:"Update the affected phpMyAdmin package."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:S/C:P/I:P/A:P");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N");
  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"exploit_framework_core", value:"true");
  script_set_attribute(attribute:"metasploit_name", value:'phpMyAdmin Authenticated Remote Code Execution via preg_replace()');
  script_set_attribute(attribute:"exploit_framework_metasploit", value:"true");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:phpMyAdmin");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:12.2");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:12.3");

  script_set_attribute(attribute:"patch_publication_date", value:"2013/06/13");
  script_set_attribute(attribute:"plugin_publication_date", value:"2014/06/13");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"SuSE Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/SuSE/release", "Host/SuSE/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release =~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "openSUSE");
if (release !~ "^(SUSE12\.2|SUSE12\.3)$") audit(AUDIT_OS_RELEASE_NOT, "openSUSE", "12.2 / 12.3", release);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);



flag = 0;

if ( rpm_check(release:"SUSE12.2", reference:"phpMyAdmin-3.5.8.1-1.12.1") ) flag++;
if ( rpm_check(release:"SUSE12.3", reference:"phpMyAdmin-3.5.8.1-1.4.1") ) flag++;

if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
  else security_warning(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "phpMyAdmin");
}
VendorProductVersionCPE
novellopensusephpmyadminp-cpe:/a:novell:opensuse:phpmyadmin
novellopensuse12.2cpe:/o:novell:opensuse:12.2
novellopensuse12.3cpe:/o:novell:opensuse:12.3

Related

nessus 14
openvas 13
freebsd 2
fedora 6
securityvulns 3
zdt 2
packetstorm 2
seebug 3
exploitpack 1
cve 3
osv 2
ubuntucve 3
debiancve 3
prion 3
phpmyadmin 3
checkpoint_advisories 2
github 1
saint 4
exploitdb 1
gentoo 1
debian 2
nessus
nessus
Mandriva Linux Security Advisory : phpmyadmin (MDVSA-2013:160)
2013-05-04 00:00:00
Fedora 19 : phpMyAdmin-3.5.8.1-1.fc19 (2013-6928)
2013-05-10 00:00:00
FreeBSD : phpMyAdmin -- Multiple security vulnerabilities (8c8fa44d-ad15-11e2-8cea-6805ca0b3d42)
2013-04-25 00:00:00
openvas
openvas
phpMyAdmin Multiple Security Vulnerabilities Apr13 (Windows)
2017-08-16 00:00:00
Fedora Update for phpMyAdmin FEDORA-2013-6977
2013-05-13 00:00:00
Fedora Update for phpMyAdmin FEDORA-2013-7000
2013-05-13 00:00:00
freebsd
freebsd
phpMyAdmin -- Multiple security vulnerabilities
2013-04-24 00:00:00
phpMyAdmin -- XSS due to unescaped HTML output in GIS visualisation page
2013-04-18 00:00:00
fedora
fedora
[SECURITY] Fedora 19 Update: phpMyAdmin-3.5.8.1-1.fc19
2013-05-09 18:59:18
[SECURITY] Fedora 18 Update: phpMyAdmin-3.5.8.1-1.fc18
2013-05-09 10:10:52
[SECURITY] Fedora 17 Update: phpMyAdmin-3.5.8.1-1.fc17
2013-05-09 09:58:00
securityvulns
securityvulns
[ MDVSA-2013:160 ] phpmyadmin
2013-05-06 00:00:00
[waraxe-2013-SA#103] - Multiple Vulnerabilities in phpMyAdmin
2013-05-06 00:00:00
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
2013-05-06 00:00:00
zdt
zdt
phpMyAdmin 3.5.8 and 4.0.0-RC2 - Multiple Vulnerabilities
2013-04-26 00:00:00
phpMyAdmin Authenticated Remote Code Execution Vulnerability
2013-04-30 00:00:00
packetstorm
packetstorm
phpMyAdmin 3.5.8 / 4.0.0-RC2 Code Execution / LFI / Overwrite
2013-04-25 00:00:00
phpMyAdmin Authenticated Remote Code Execution
2013-04-29 00:00:00
seebug
seebug
phpMyAdmin 3.5.8 and 4.0.0-RC2 - Multiple Vulnerabilities
2014-07-01 00:00:00
phpMyAdmin 'filename_template' θΏœη¨‹δ»£η ζ‰§θ‘Œ(CVE-2013-3239)
2013-04-28 00:00:00
phpMyAdmin preg_replace()θΏœη¨‹PHPδ»£η ζ‰§θ‘Œ
2013-04-28 00:00:00
exploitpack
exploitpack
phpMyAdmin 3.5.84.0.0-RC2 - Multiple Vulnerabilities
2013-04-25 00:00:00
cve
cve
CVE-2013-3239
2013-04-26 03:34:00
CVE-2013-1937
2013-04-16 14:04:00
CVE-2013-3238
2013-04-26 03:34:00
osv
osv
phpMyAdmin Remote Code Execution
2022-05-17 04:58:08
phpmyadmin - security update
2014-07-09 00:00:00
ubuntucve
ubuntucve
CVE-2013-3239
2013-04-26 00:00:00
CVE-2013-3238
2013-04-26 00:00:00
CVE-2013-1937
2013-04-16 00:00:00
debiancve
debiancve
CVE-2013-3239
2013-04-26 03:34:00
CVE-2013-1937
2013-04-16 14:04:00
CVE-2013-3238
2013-04-26 03:34:00
prion
prion
Cross site scripting
2013-04-16 14:04:00
Design/Logic Flaw
2013-04-26 03:34:00
Design/Logic Flaw
2013-04-26 03:34:00
phpmyadmin
phpmyadmin
XSS due to unescaped HTML output in GIS visualisation page.
2013-04-18 00:00:00
Locally Saved SQL Dump File Multiple File Extension Remote Code Execution.
2013-04-24 00:00:00
Remote code execution via preg_replace().
2013-04-24 00:00:00
checkpoint_advisories
checkpoint_advisories
PhpMyAdmin preg_replace Function Code Injection - Ver2 (CVE-2013-3238)
2015-05-18 00:00:00
PhpMyAdmin preg_replace Function Code Injection (CVE-2013-3238)
2013-05-22 00:00:00
github
github
phpMyAdmin Remote Code Execution
2022-05-17 04:58:08
saint
saint
phpMyAdmin preg_replace from_prefix sanitization vulnerability
2013-05-20 00:00:00
phpMyAdmin preg_replace from_prefix sanitization vulnerability
2013-05-20 00:00:00
phpMyAdmin preg_replace from_prefix sanitization vulnerability
2013-05-20 00:00:00
exploitdb
exploitdb
phpMyAdmin 3.5.8/4.0.0-RC2 - Multiple Vulnerabilities
2013-04-25 00:00:00
gentoo
gentoo
phpMyAdmin: Multiple vulnerabilities
2013-11-04 00:00:00
debian
debian
phpmyadmin security update
2014-07-09 19:24:32
phpmyadmin security update
2014-07-09 19:24:50
JSON
Related for OPENSUSE-2013-524.NASL
nessus14openvas13freebsd2fedora6securityvulns3zdt2packetstorm2seebug3exploitpack1cve3osv2ubuntucve3debiancve3prion3phpmyadmin3checkpoint_advisories2github1saint4exploitdb1gentoo1debian2