SecuritySpace - CVE-2016-9849

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2016-9849

Description: An issue was discovered in phpMyAdmin. It is possible to bypass AllowRoot restriction ($cfg['Servers'][$i]['AllowRoot']) and deny rules for username by using Null Byte in the username. All 4.6.x versions (prior to 4.6.5), 4.4.x versions (prior to 4.4.15.9), and 4.0.x versions (prior to 4.0.10.18) are affected.

Test IDs: 1.3.6.1.4.1.25623.1.1.1.2.2016.757

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2016-9849
BugTraq ID: 94521
http://www.securityfocus.com/bid/94521
https://security.gentoo.org/glsa/201701-32
https://lists.debian.org/debian-lts-announce/2019/06/msg00009.html

CVE ID:	CVE-2016-9849
Description:	An issue was discovered in phpMyAdmin. It is possible to bypass AllowRoot restriction ($cfg['Servers'][$i]['AllowRoot']) and deny rules for username by using Null Byte in the username. All 4.6.x versions (prior to 4.6.5), 4.4.x versions (prior to 4.4.15.9), and 4.0.x versions (prior to 4.0.10.18) are affected.
Test IDs:	1.3.6.1.4.1.25623.1.1.1.2.2016.757
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2016-9849 BugTraq ID: 94521 http://www.securityfocus.com/bid/94521 https://security.gentoo.org/glsa/201701-32 https://lists.debian.org/debian-lts-announce/2019/06/msg00009.html