FreeBSD : phpmyadmin -- multiple XSS and a man-in-the-middle vulnerability (f682a506-df7c-11e5-81e4-6805ca0b3d42)

This script is Copyright (C) 2016 Tenable Network Security, Inc.


Synopsis :

The remote FreeBSD host is missing a security-related update.

Description :

The phpMyAdmin development team reports :

XSS vulnerability in SQL parser.

Using a crafted SQL query, it is possible to trigger an XSS attack
through the SQL query page.

We consider this vulnerability to be non-critical.

Multiple XSS vulnerabilities.

By sending a specially crafted URL as part of the HOST header, it is
possible to trigger an XSS attack.

A weakness was found that allows an XSS attack with Internet Explorer
versions older than 8 and Safari on Windows using a specially crafted
URL.

Using a crafted SQL query, it is possible to trigger an XSS attack
through the SQL query page.

Using a crafted parameter value, it is possible to trigger an XSS
attack in user accounts page.

Using a crafted parameter value, it is possible to trigger an XSS
attack in zoom search page.

We consider this vulnerability to be non-critical.

Multiple XSS vulnerabilities.

With a crafted table/column name it is possible to trigger an XSS
attack in the database normalization page.

With a crafted parameter it is possible to trigger an XSS attack in
the database structure page.

With a crafted parameter it is possible to trigger an XSS attack in
central columns page.

We consider this vulnerability to be non-critical.

Vulnerability allowing man-in-the-middle attack on API call to GitHub.

A vulnerability in the API call to GitHub can be exploited to perform
a man-in-the-middle attack.

We consider this vulnerability to be serious.

See also :

https://www.phpmyadmin.net/security/PMASA-2016-10/
https://www.phpmyadmin.net/security/PMASA-2016-11/
https://www.phpmyadmin.net/security/PMASA-2016-12/
https://www.phpmyadmin.net/security/PMASA-2016-13/
http://www.nessus.org/u?9139bab1

Solution :

Update the affected package.

Risk factor :

Medium / CVSS Base Score : 5.8
(CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:N)

Family: FreeBSD Local Security Checks

Nessus Plugin ID: 89049 ()

Bugtraq ID:

CVE ID: CVE-2016-2559
CVE-2016-2560
CVE-2016-2561
CVE-2016-2562

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now