Debian DSA-2391-1 : phpmyadmin - several vulnerabilities

Several vulnerabilities have been discovered in phpMyAdmin, a tool to administer MySQL over the web. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2011-4107 The XML import plugin allowed a remote attacker to read arbitrary files via XML data containing...

[SECURITY] [DSA 2391-1] phpmyadmin security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2391-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst January 22, 2012 http://www.debian.org/security/faq -...

DSA-2391-1 phpmyadmin - several

Bulletin has no description...

BS.Player 2.57 - Local Buffer Overflow (SEH Unicode) (Metasploit)

$Id: $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'BS.Player...

BS.Player 2.57 Buffer Overflow (Unicode SEH)

This module exploits a buffer overflow in BS.Player 2.57. When the playlist import is used to import a specially crafted m3u file, a buffer overflow occurs allowing arbitrary code execution. This module requires Metasploit: https://metasploit.com/download Current source:...

[SECURITY] Fedora 16 Update: phpMyAdmin-3.4.9-1.fc16

phpMyAdmin is a tool written in PHP intended to handle the administration of MySQL over the World Wide Web. Most frequently used operations are supported by the user interface managing databases, tables, fields, relations, index es, users, permissions, while you still have the ability to directly...

[SECURITY] Fedora 15 Update: phpMyAdmin-3.4.9-1.fc15

phpMyAdmin is a tool written in PHP intended to handle the administration of MySQL over the World Wide Web. Most frequently used operations are supported by the user interface managing databases, tables, fields, relations, index es, users, permissions, while you still have the ability to directly...

Empire(EmpireCMS)cms 6.6 the background to get shell-vulnerability warning-the black bar safety net

Previous 6. 5http://www.badguest.cn/Article/201011/78510.htmlsomeone hair of the method is that the background---system setup---the management data table---management system models---import new module,directly put the modified php shell was renamed the shell. php. mod uploaded, the new version us...

Kaspersky Internet Security Memory Corruption Vulnerability

Kaspersky Internet Security Memory Corruption Vulnerability Vulnerability-Lab Team discovered a Memory & Pointer Corruption Vulnerability on Kaspersky Internet Security 2011/2012 & Kaspersky Anti-Virus 2011/2012. A Memory Corruption vulnerability is detected on Kaspersky Internet Security 2011/20...

Kaspersky IS&AV 2011/12 - Memory Corruption Vulnerability

No description provided by source. References: =========== http://www.vulnerability-lab.com/getcontent.php?id=129 Introduction: ============= Kaspersky Internet Security 2011 has everything that you need to stay safe and secure while you re surfing the web. It provides constant protection for you...

Fedora 15 : phpMyAdmin-3.4.8-1.fc15 (2011-16786)

Changes for 3.4.8.0 2011-12-01 : - interface enum data split at space char more space to edit - interface ENUM/SET editor can't handle commas in values - interface no links to browse/empty views and tables - interface Deleted search results remain visible - import ODS import ignores memory limits...

Fedora 16 : phpMyAdmin-3.4.8-1.fc16 (2011-16768)

Changes for 3.4.8.0 2011-12-01 : - interface enum data split at space char more space to edit - interface ENUM/SET editor can't handle commas in values - interface no links to browse/empty views and tables - interface Deleted search results remain visible - import ODS import ignores memory limits...

[SECURITY] Fedora 15 Update: phpMyAdmin-3.4.8-1.fc15

phpMyAdmin is a tool written in PHP intended to handle the administration of MySQL over the World Wide Web. Most frequently used operations are supported by the user interface managing databases, tables, fields, relations, index es, users, permissions, while you still have the ability to directly...

Fedora Update for phpMyAdmin FEDORA-2011-15846

Check for the Version of phpMyAdmin OpenVAS Vulnerability Test Fedora Update for phpMyAdmin FEDORA-2011-15846 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...

[SECURITY] Fedora 14 Update: phpMyAdmin-3.4.7.1-1.fc14

phpMyAdmin is a tool written in PHP intended to handle the administration of MySQL over the World Wide Web. Most frequently used operations are supported by the user interface managing databases, tables, fields, relations, index es, users, permissions, while you still have the ability to directly...

[SECURITY] Fedora 16 Update: phpMyAdmin-3.4.7.1-1.fc16

phpMyAdmin is a tool written in PHP intended to handle the administration of MySQL over the World Wide Web. Most frequently used operations are supported by the user interface managing databases, tables, fields, relations, index es, users, permissions, while you still have the ability to directly...

Fedora 14 : phpMyAdmin-3.4.7.1-1.fc14 (2011-15831)

Changes for 3.4.7.1 2011-11-10 : - security Fixed possible local file inclusion in XML import CVE-2011-4107 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as mu...

Xxe

The simplexmlloadstring function in the XML import plug-in libraries/import/xml.php in phpMyAdmin 3.4.x before 3.4.7.1 and 3.3.x before 3.3.10.5 allows remote authenticated users to read arbitrary files via XML data containing external entity references, aka an XML external entity XXE injection...

CVE-2011-4107

The simplexmlloadstring function in the XML import plug-in libraries/import/xml.php in phpMyAdmin 3.4.x before 3.4.7.1 and 3.3.x before 3.3.10.5 allows remote authenticated users to read arbitrary files via XML data containing external entity references, aka an XML external entity XXE injection...

CVE-2011-4107

The simplexmlloadstring function in the XML import plug-in libraries/import/xml.php in phpMyAdmin 3.4.x before 3.4.7.1 and 3.3.x before 3.3.10.5 allows remote authenticated users to read arbitrary files via XML data containing external entity references, aka an XML external entity XXE injection...