|
|
CVE Reference: CVE-2005-4079 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2005-4079 |
|
|
Description: The register_globals emulation in phpMyAdmin 2.7.0 rc1 allows remote attackers to exploit other vulnerabilities in phpMyAdmin by modifying the import_blacklist variable in grab_globals.php, which can then be used to overwrite other variables. |
|
|
CVE Status: Candidate |
|
|
References: SUSE http://www.securityfocus.com/archive/1/archive/1/423142/100/0/threaded SREASON http://securityreason.com/securityalert/237 SAID Secunia Advisory: SA17925 Secunia Advisory: SA18618 Secunia Advisory: SA17957 OSVDB 21508 MISC http://www.hardened-php.net/advisory_252005.110.html GENTOO http://www.gentoo.org/security/en/glsa/glsa-200512-03.xml CONFIRM http://www.phpmyadmin.net/home_page/security.php?issue=PMASA-2005-9 http://www.phpmyadmin.net/home_page/downloads.php?relnotes=0 BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/418834/100/0/threaded BID 15761 |
|
| Return to the previous page. |
