Debian Local Security Checks : Debian: Security Advisory (DSA-1824-1)

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

Test ID: 1.3.6.1.4.1.25623.1.0.64312

Category: Debian Local Security Checks

Title: Debian: Security Advisory (DSA-1824-1)

Summary: The remote host is missing an update for the Debian 'phpmyadmin' package(s) announced via the DSA-1824-1 advisory.

Description: Summary:
The remote host is missing an update for the Debian 'phpmyadmin' package(s) announced via the DSA-1824-1 advisory.

Vulnerability Insight:
Several remote vulnerabilities have been discovered in phpMyAdmin, a tool to administer MySQL over the web. The Common Vulnerabilities and Exposures project identifies the following problems:

CVE-2009-1150

Cross site scripting vulnerability in the export page allow for an attacker that can place crafted cookies with the user to inject arbitrary web script or HTML.

CVE-2009-1151

Static code injection allows for a remote attacker to inject arbitrary code into phpMyAdmin via the setup.php script. This script is in Debian under normal circumstances protected via Apache authentication. However, because of a recent worm based on this exploit, we are patching it regardless, to also protect installations that somehow still expose the setup.php script.

For the old stable distribution (etch), these problems have been fixed in version 2.9.1.1-11.

For the stable distribution (lenny), these problems have been fixed in version 2.11.8.1-5+lenny1.

For the unstable distribution (sid), these problems have been fixed in version 3.1.3.1-1.

We recommend that you upgrade your phpmyadmin package.

Affected Software/OS:
'phpmyadmin' package(s) on Debian 4, Debian 5.

Solution:
Please install the updated package(s).

CVSS Score:
7.5

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2009-1150
BugTraq ID: 34251
http://www.securityfocus.com/bid/34251
Debian Security Information: DSA-1824 (Google Search)
http://www.debian.org/security/2009/dsa-1824
http://security.gentoo.org/glsa/glsa-200906-03.xml
http://www.mandriva.com/security/advisories?name=MDVSA-2009:115
http://secunia.com/advisories/34430
http://secunia.com/advisories/34642
http://secunia.com/advisories/35585
http://secunia.com/advisories/35635
SuSE Security Announcement: SUSE-SR:2009:008 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00003.html
Common Vulnerability Exposure (CVE) ID: CVE-2009-1151
BugTraq ID: 34236
http://www.securityfocus.com/bid/34236
Bugtraq: 20090609 CVE-2009-1151: phpMyAdmin Remote Code Execution Proof of Concept (Google Search)
http://www.securityfocus.com/archive/1/504191/100/0/threaded
https://www.exploit-db.com/exploits/8921
http://labs.neohapsis.com/2009/04/06/about-cve-2009-1151/
http://www.gnucitizen.org/blog/cve-2009-1151-phpmyadmin-remote-code-execution-proof-of-concept/

Copyright Copyright (C) 2009 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit.
To run a free test of this vulnerability against your system, register below.

Test ID:	1.3.6.1.4.1.25623.1.0.64312
Category:	Debian Local Security Checks
Title:	Debian: Security Advisory (DSA-1824-1)
Summary:	The remote host is missing an update for the Debian 'phpmyadmin' package(s) announced via the DSA-1824-1 advisory.
Description:	Summary: The remote host is missing an update for the Debian 'phpmyadmin' package(s) announced via the DSA-1824-1 advisory. Vulnerability Insight: Several remote vulnerabilities have been discovered in phpMyAdmin, a tool to administer MySQL over the web. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2009-1150 Cross site scripting vulnerability in the export page allow for an attacker that can place crafted cookies with the user to inject arbitrary web script or HTML. CVE-2009-1151 Static code injection allows for a remote attacker to inject arbitrary code into phpMyAdmin via the setup.php script. This script is in Debian under normal circumstances protected via Apache authentication. However, because of a recent worm based on this exploit, we are patching it regardless, to also protect installations that somehow still expose the setup.php script. For the old stable distribution (etch), these problems have been fixed in version 2.9.1.1-11. For the stable distribution (lenny), these problems have been fixed in version 2.11.8.1-5+lenny1. For the unstable distribution (sid), these problems have been fixed in version 3.1.3.1-1. We recommend that you upgrade your phpmyadmin package. Affected Software/OS: 'phpmyadmin' package(s) on Debian 4, Debian 5. Solution: Please install the updated package(s). CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2009-1150 BugTraq ID: 34251 http://www.securityfocus.com/bid/34251 Debian Security Information: DSA-1824 (Google Search) http://www.debian.org/security/2009/dsa-1824 http://security.gentoo.org/glsa/glsa-200906-03.xml http://www.mandriva.com/security/advisories?name=MDVSA-2009:115 http://secunia.com/advisories/34430 http://secunia.com/advisories/34642 http://secunia.com/advisories/35585 http://secunia.com/advisories/35635 SuSE Security Announcement: SUSE-SR:2009:008 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00003.html Common Vulnerability Exposure (CVE) ID: CVE-2009-1151 BugTraq ID: 34236 http://www.securityfocus.com/bid/34236 Bugtraq: 20090609 CVE-2009-1151: phpMyAdmin Remote Code Execution Proof of Concept (Google Search) http://www.securityfocus.com/archive/1/504191/100/0/threaded https://www.exploit-db.com/exploits/8921 http://labs.neohapsis.com/2009/04/06/about-cve-2009-1151/ http://www.gnucitizen.org/blog/cve-2009-1151-phpmyadmin-remote-code-execution-proof-of-concept/
Copyright	Copyright (C) 2009 Greenbone AG