phpMyAdmin /libraries/storage_engines.lib.php Direct Request Path Disclosure

2005-11-15T03:47:27
ID OSVDB:20912
Type osvdb
Reporter Toni Koivunen(toni.koivunen@fitsec.com)
Modified 2005-11-15T03:47:27

Description

Vulnerability Description

phpMyAdmin contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a remote attacker makes a direct request to the /libraries/storage_engines.lib.php script, which will disclose the software's installation path resulting in a loss of confidentiality. While such information is relatively low risk, it is often useful in carrying out additional, more focused attacks.

Solution Description

Upgrade to version 2.6.4-pl4 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

phpMyAdmin contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a remote attacker makes a direct request to the /libraries/storage_engines.lib.php script, which will disclose the software's installation path resulting in a loss of confidentiality. While such information is relatively low risk, it is often useful in carrying out additional, more focused attacks.

Manual Testing Notes

http://[target]/phpMyAdmin/libraries/storage_engines.lib.php

Fatal error: Call to undefined function: pma_dbi_query() in /usr/local/cpanel/base/3rdparty/phpMyAdmin/libraries/storage_engines.lib.php on line 51

References:

Vendor Specific Advisory URL Security Tracker: 1015213 Secunia Advisory ID:17578 Related OSVDB ID: 20914 Related OSVDB ID: 20911 Related OSVDB ID: 20913 Related OSVDB ID: 20910 Other Advisory URL: http://www.fitsec.com/advisories/FS-05-02.txt Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2005-11/0446.html Keyword: FS-05-02 CVE-2005-3622