Detections
Analytics
Debian DSA-1557-1 : phpmyadmin - insufficient input sanitising
medium Nessus Plugin ID 32058
Synopsis
The remote Debian host is missing a security-related update.Description
Several remote vulnerabilities have been discovered in phpMyAdmin, an application to administrate MySQL over the WWW. The Common Vulnerabilities and Exposures project identifies the following problems :- CVE-2008-1924 Attackers with CREATE table permissions were allowed to read arbitrary files readable by the webserver via a crafted HTTP POST request.
- CVE-2008-1567 The PHP session data file stored the username and password of a logged in user, which in some setups can be read by a local user.
- CVE-2008-1149 Cross site scripting and SQL injection were possible by attackers that had permission to create cookies in the same cookie domain as phpMyAdmin runs in.
Solution
Upgrade the phpmyadmin package.For the stable distribution (etch), these problems have been fixed in version 4:2.9.1.1-7.
See Also
https://security-tracker.debian.org/tracker/CVE-2008-1924
https://security-tracker.debian.org/tracker/CVE-2008-1567
Plugin Details
Severity: Medium
ID: 32058
File Name: debian_DSA-1557.nasl
Version: 1.17
Type: local
Agent: unix
Family: Debian Local Security Checks
Published: 4/28/2008
Updated: 1/4/2021
Supported Sensors: Agentless Assessment, Continuous Assessment, Frictionless Assessment Agent, Nessus Agent, Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 5.8
CVSS v2
Risk Factor: Medium
Base Score: 5.1
Temporal Score: 3.8
Vector: CVSS2#AV:N/AC:H/Au:N/C:P/I:P/A:P
Vulnerability Information
CPE: p-cpe:/a:debian:debian_linux:phpmyadmin, cpe:/o:debian:debian_linux:4.0
Required KB Items: Host/local_checks_enabled, Host/Debian/release, Host/Debian/dpkg-l
Exploit Ease: No known exploits are available
Patch Publication Date: 4/24/2008
Reference Information
CVE: CVE-2008-1149, CVE-2008-1567, CVE-2008-1924
BID: 28068