CERT-MU AD-2010-3
Multiple Vulnerabilities in phpMyAdmin
Original issue date: 8 February, 2010
Overview
Multiple vulnerabilities have been reported in phpMyAdmin versions prior to 2.11.10, which could allow a remote attacker to bypass certain security restrictions and conduct cross-site request forgery attacks.
Description
- Temporary Directory Permission Vulnerability
This vulnerability is caused due to libraries /File.class.php in phpMyAdmin creates a temporary directory with 0777 permissions and uses predictable filenames for temporary files, which could be exploited to modify files.
- Temporary File Predictible Filename Vulnerability
This vulnerability is caused due to libraries /File.class.php in phpMyAdmin uses predictable filenames for temporary files, which could be exploited to manipulate certain files.
- Multiple Parameter CSRF Vulnerability
This vulnerability is caused due to the "/scripts/setup.php" script using the "unserialize()" function on the values of the (1) configuration and (2) v[0] parameters, which might allow remote attackers to conduct cross-site request forgery (CSRF) attacks.
Software Affected
- phpMyAdmin versions prior to 2.11.10
Impact
Severity Rating: High
Solution
Upgrade to phpMyAdmin 3.0.0 or 2.11.10.
http://www.phpmyadmin.net/home_page/downloads.php
Disclaimer
The information provided herein is on "as is" basis, without warranty of any kind.
Vendor Information
phpMyAdmin
http://www.phpmyadmin.net/home_page/downloads.php
CVE Name
CVE-2008-7251
CVE-2008-7252
CVE-2009-4605
References
phpMyAdmin
http://www.phpmyadmin.net/home_page/security/PMASA-2010-1.php
http://www.phpmyadmin.net/home_page/security/PMASA-2010-2.php
http://www.phpmyadmin.net/home_page/security/PMASA-2010-3.php
SecurityFocus
http://www.securityfocus.com/bid/37826/
Secunia
http://secunia.com/advisories/38211/
XFocus
http://xforce.iss.net/xforce/xfdb/55671
VUPEN Security
http://www.vupen.com/english/advisories/2010/0151
SecurityLab
http://en.securitylab.ru/nvd/389930.php
|
