Mandriva Linux Security Advisory : phpmyadmin (MDVSA-2013:203)

This script is Copyright (C) 2013 Tenable Network Security, Inc.


Synopsis :

The remote Mandriva Linux host is missing a security update.

Description :

Multiple vulnerabilities has been discovered and corrected in
phpmyadmin :

- XSS due to unescaped HTML Output when executing a SQL
query (CVE-2013-4995).

- 5 XSS vulnerabilities in setup, chart display, process
list, and logo link. If a crafted version.json would be
presented, an XSS could be introduced (CVE-2013-4996,
CVE-2013-4997).

- Full path disclosure vulnerabilities (CVE-2013-4998,
CVE-2013-5000).

- Self-XSS due to unescaped HTML output in schema export
(CVE-2013-5002).

- SQL injection vulnerabilities, producing a privilege
escalation (control user) (CVE-2013-5003).

This upgrade provides the latest phpmyadmin version (3.5.8.2) to
address these vulnerabilities.

See also :

http://advisories.mageia.org/MGASA-2013-0238.html
http://www.phpmyadmin.net/home_page/security/PMASA-2013-11.php
http://www.phpmyadmin.net/home_page/security/PMASA-2013-12.php
http://www.phpmyadmin.net/home_page/security/PMASA-2013-14.php
http://www.phpmyadmin.net/home_page/security/PMASA-2013-15.php
http://www.phpmyadmin.net/home_page/security/PMASA-2013-8.php
http://www.phpmyadmin.net/home_page/security/PMASA-2013-9.php

Solution :

Update the affected phpmyadmin package.

Risk factor :

Medium / CVSS Base Score : 6.5
(CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:P)
CVSS Temporal Score : 5.4
(CVSS2#E:F/RL:OF/RC:C)
Public Exploit Available : true

Family: Mandriva Local Security Checks

Nessus Plugin ID: 69154 ()

Bugtraq ID: 61493
61510
61513
61515
61516

CVE ID: CVE-2013-4995
CVE-2013-4996
CVE-2013-4997
CVE-2013-4998
CVE-2013-5000
CVE-2013-5002
CVE-2013-5003