Joined: 12 May 2004
|Posted: Mon Nov 04, 2013 1:26 pm Post subject: [ GLSA 201311-02 ] phpMyAdmin: Multiple vulnerabilities
|Gentoo Linux Security Advisory
Title: phpMyAdmin: Multiple vulnerabilities (GLSA 201311-02)
Date: November 04, 2013
Bug(s): #465420, #467080, #478696, #479870
Multiple vulnerabilities have been found in phpMyAdmin, allowing
remote authenticated attackers to execute arbitrary code, inject SQL code
or conduct other attacks.
phpMyAdmin is a web-based management tool for MySQL databases.
Vulnerable: < 4.0.5
Unaffected: >= 4.0.5
Architectures: All supported architectures
Multiple vulnerabilities have been discovered in phpMyAdmin. Please
review the CVE identifiers referenced below for details.
A remote authenticated attacker could exploit these vulnerabilities to
execute arbitrary code with the privileges of the process running
phpMyAdmin, inject SQL code, or to conduct Cross-Site Scripting and
There is no known workaround at this time.
All phpMyAdmin users should upgrade to the latest version:
|# emerge --sync
# emerge --ask --oneshot --verbose ">=dev-db/phpmyadmin-4.0.5"
Last edited by GLSA on Sat May 24, 2014 4:32 am; edited 2 times in total
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum