Home | hacker invade | crack analyzes | hacker course | Exploit | encryption decipher | network management | System crack | the virus to be related | invades the examination | firewall
You are here: hacking technology > System crack > Content
Hot Articles
GeoVision Digital Video
Adobe Acrobat and the Re
Samba group_mapping.tdb/
The Sleuth Kit - UNIX-ba
Marvell 88W8361P-BEM1 ch
CS-Cart core / user.php
phpBB Small ShoutBox mod
Outlook Web Access for E
FlexCell Grid ActiveX co
PHP error_log bypasses t
Apple Bonjour for Window
nginx file type error pa
DedeCMS V5.5 Final GetWe
Details of PHP code exec
The VMware 2008-0014 ren
Recommend Articles
Mozilla the Firefox 2.0.
DC++ many long-distance
VLC the media player WAV
The Wireshark 1.0.1 edit
Wordpress XML-RPC connec
ServerView Web connectio
PCRE the pcre_compile.c
phpMyAdmin long-distance
Panda the ActiveScan lon
BlueZ the SDP load handl
1024 CMS many documents
WeFi journal file local
vBulletin adminlog.php r
Microsoft Windows DNS se
Adobe RoboHelp Server he
New Articles
DiY - brief loophole ana
Freefloat FTP Server ove
I can with Apache endeav
HP - UX NFS/ONCplus unkn
HP - UX FTPD remote deni
HP - UX DCE can send acr
HP - UX 'useradd' local
HP - UX swagentd remote
HP - UX Numbers local de
HP - UX System under the
HP - UX 'FTPD' unknown r
HP TCP/IP Services for c
From Solaris NFS pages f
From Solaris XScreenSave
Sun Solaris Auditing Ext
phpMyAdmin long-distance cross station script crack
  Add date: 07/10/2008   Publishing date: 07/10/2008   Hits: 87

Issues the date: 2008-06-23
Renewal date: 2008-07-07

Is affected the system:
phpMyAdmin phpMyAdmin < 2.11.7
Not affected system:
phpMyAdmin phpMyAdmin 2.11.7
Description:
--------------------------------------------------------------------------------
CVE(CAN) ID: CVE-2008-2960

phpMyAdmin is the tool which compiles with PHP, uses in managing MySQL through WEB.

If the PHP register_globals establishment is on, and the server has not applied in /libraries .htaccess document establishment, the long-distance aggressor may through to the phpMyAdmin submission evil intention request that carries out the cross station script attack, causes the execution random code.

<* origin: Tim Starling
 
  Link: http://secunia.com/advisories/30813
        http://www.phpmyadmin.net/home_page/security.php?issue=PMASA-2008-4
*>

Suggested:
--------------------------------------------------------------------------------
Manufacturer patch:

phpMyAdmin
----------
At present the manufacturer had already issued the promotion patch repairs this security problem, welcome to manufacturer main page downloading:

http://phpmyadmin.svn.sourceforge.net/viewvc/phpmyadmin?view=rev&revision=11326
Prev:PCRE the pcre_compile.c document piles the overflow crack Next:The Wireshark 1.0.1 editions repair many security cracks

Comment:

Category: Home > System crack
Home