phpMyAdmin session.inc.php Multiple Method CSRF

2006-09-27T13:33:59
ID OSVDB:30140
Type osvdb
Reporter OSVDB
Modified 2006-09-27T13:33:59

Description

Solution Description

Upgrade to version 2.9.1-rc1 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

References:

Vendor URL: http://www.phpmyadmin.net/ Vendor Specific Advisory URL Vendor Specific Advisory URL Secunia Advisory ID:23086 Secunia Advisory ID:22126 Secunia Advisory ID:22781 Related OSVDB ID: 29240 Related OSVDB ID: 30141 Related OSVDB ID: 29241 Other Advisory URL: http://www.hardened-php.net/advisory_072006.130.html Mail List Post: http://attrition.org/pipermail/vim/2006-October/001067.html Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2006-10/0006.html ISS X-Force ID: 29301 CVE-2006-5116 Bugtraq ID: 20253