FreeBSD : phpmyadmin -- HTTP Response Splitting vulnerability (c55f9ed0-56a7-11da-a3f0-00123ffe8333)

high Nessus Plugin ID 21509

Synopsis

The remote FreeBSD host is missing a security-related update.

Description

A phpMyAdmin security advisory reports :

Some scripts in phpMyAdmin are vulnerable to an HTTP Response Splitting attack.

Severity :

We consider these vulnerabilities to be serious. However, they can only be triggered on systems running with register_globals = on.

Solution

Update the affected package.

See Also

https://www.phpmyadmin.net/security/PMASA-2005-6/

http://www.fitsec.com/advisories/FS-05-02.txt

http://www.nessus.org/u?106479d8

Plugin Details

Severity: High

ID: 21509

File Name: freebsd_pkg_c55f9ed056a711daa3f000123ffe8333.nasl

Version: 1.14

Type: local

Published: 5/13/2006

Updated: 1/6/2021

Supported Sensors: Nessus

Vulnerability Information

CPE: p-cpe:/a:freebsd:freebsd:phpmyadmin, cpe:/o:freebsd:freebsd

Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info

Patch Publication Date: 11/16/2005

Vulnerability Publication Date: 11/15/2005

Reference Information

Secunia: 17578