phpMyAdmin get_foreign.lib.php Path Disclosure

2005-02-22T17:03:03
ID OSVDB:14380
Type osvdb
Reporter cxib8o3(cxib8o3@users.sourceforge.net)
Modified 2005-02-22T17:03:03

Description

Vulnerability Description

phpMyAdmin contains a flaw that may lead to an unauthorized information disclosure.  The issue is triggered when a remote attacker directly requests the get_foreign.lib.php script, which will disclose the software installation path resulting in a loss of confidentiality.

Technical Description

This only affects installations with the "display_errors" option set to 1.

Solution Description

Upgrade to version 2.6.1-pl3 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

phpMyAdmin contains a flaw that may lead to an unauthorized information disclosure.  The issue is triggered when a remote attacker directly requests the get_foreign.lib.php script, which will disclose the software installation path resulting in a loss of confidentiality.

Manual Testing Notes

http://[victim]/[DIR]/libraries/get_foreign.lib.php?foreigners=cXIb8O3&field=hi&foreigners[hi]=unloved

References:

Vendor URL: http://www.phpmyadmin.net/ Vendor Specific News/Changelog Entry: http://sourceforge.net/tracker/index.php?func=detail&aid=1149383&group_id=23067&atid=377408 Secunia Advisory ID:14382 Related OSVDB ID: 14374 Related OSVDB ID: 14376 Related OSVDB ID: 14378 Related OSVDB ID: 14375 Related OSVDB ID: 14381 Related OSVDB ID: 14382 Related OSVDB ID: 14387 Related OSVDB ID: 14388 Related OSVDB ID: 14385 Related OSVDB ID: 14386 Related OSVDB ID: 14377 Related OSVDB ID: 14379 Related OSVDB ID: 14383 Related OSVDB ID: 14384 CVE-2005-0544