13 matches found
openSUSE Security Update : phpMyAdmin (phpMyAdmin-442)
This is a version upgrade to phpMyAdmin 2.11.9.4 to fix various security bugs. CVE-2008-2960, CVE-2008-3197, CVE-2008-1149, CVE-2008-1567, CVE-2008-1924, CVE-2008-4096, CVE-2008-4326, CVE-2008-5621, CVE-2008-5622 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and packag...
Fedora Update for phpMyAdmin FEDORA-2008-2825
Check for the Version of phpMyAdmin OpenVAS Vulnerability Test Fedora Update for phpMyAdmin FEDORA-2008-2825 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...
Fedora Update for phpMyAdmin FEDORA-2008-2874
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
FreeBSD Ports: phpmyadmin
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Debian Security Advisory DSA 1557-1 (phpmyadmin)
The remote host is missing an update to phpmyadmin announced via advisory DSA 1557-1. OpenVAS Vulnerability Test $Id: deb15571.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1557-1 phpmyadmin Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
Debian: Security Advisory (DSA-1557-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DSA-1557-1 : phpmyadmin - insufficient input sanitising
Several remote vulnerabilities have been discovered in phpMyAdmin, an application to administrate MySQL over the WWW. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2008-1924 Attackers with CREATE table permissions were allowed to read arbitrary files...
[SECURITY] [DSA 1557-1] New phpmyadmin packages fix several vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1557-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst April 24, 2008 http://www.debian.org/security/faq -...
[SECURITY] [DSA 1557-1] New phpmyadmin packages fix several vulnerabilities
------------------------------------------------------------------------ Debian Security Advisory DSA-1557-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst April 24, 2008 http://www.debian.org/security/faq -...
DSA-1557-1 phpmyadmin - several vulnerabilities
Bulletin has no description...
Fedora 7 : phpMyAdmin-2.11.5.1-1.fc7 (2008-2874)
This update addresses PMASA-2008-2 / CVE-2008-1567: phpMyAdmin upstream received an advisory from Jim Hermann: It saves sensitive information like the MySQL username and password and the Blowfish secret key in session data, which might be unprotected on a shared host...
CVE-2008-1567
CVE-2008-1567 affects phpMyAdmin; version prior to 2.11.5.1 stores the MySQL username, password, and the Blowfish secret key in cleartext in a Session file under /tmp, enabling local users to obtain sensitive information. Connected advisories show patches upgrading to phpMyAdmin 2.11.9.4 (e.g., o...
Credentials disclosure on shared hosts via session data
PMASA-2008-2 Announcement-ID: PMASA-2008-2 Date: 2008-03-29 Summary Credentials disclosure on shared hosts via session data Description We received an advisory from Jim Hermann, and we wish to thank him for his work. phpMyAdmin saves sensitive information like the MySQL username and password and...