phpMyAdmin Multiple Vulnerabilities
Last Update Date:
26 Jan 2017 09:04
Release Date:
26 Jan 2017
4222
Views
RISK: Medium Risk
TYPE: Clients - Productivity Products
Multiple vulnerabilities have been identified in phpMyAdmin, which can be exploited by remote attacker to execute arbitrary code, cause denial of service and disclose sensitive information.
Impact
- Denial of Service
- Remote Code Execution
- Information Disclosure
System / Technologies affected
- All 4.6.x versions (prior to 4.6.6), 4.4.x versions (prior to 4.4.15.10), and 4.0.x versions (prior to 4.0.10.19)
Solutions
Before installation of the software, please visit the software manufacturer web-site for more details.
- Upgrade to phpMyAdmin 4.6.6, 4.4.15.10, or 4.0.10.19 or newer or apply patch:
https://www.phpmyadmin.net/security/PMASA-2017-1/
https://www.phpmyadmin.net/security/PMASA-2017-2/
https://www.phpmyadmin.net/security/PMASA-2017-3/
https://www.phpmyadmin.net/security/PMASA-2017-4/
https://www.phpmyadmin.net/security/PMASA-2017-5/
https://www.phpmyadmin.net/security/PMASA-2017-6/
https://www.phpmyadmin.net/security/PMASA-2017-7/
Vulnerability Identifier
- CVE-2016-6633
- CVE-2016-6632
- CVE-2016-6631
- CVE-2016-6630
- CVE-2016-6629
- CVE-2016-6628
- CVE-2016-6627
- CVE-2016-6626
- CVE-2016-6625
- CVE-2016-6624
- CVE-2016-6623
- CVE-2016-6622
- CVE-2016-6621
- CVE-2016-6620
- CVE-2016-6619
- CVE-2016-6618
- CVE-2016-6617
- CVE-2016-6616
- CVE-2016-6615
- CVE-2016-6614
- CVE-2016-6613
- CVE-2016-6612
- CVE-2016-6611
- CVE-2016-6610
- CVE-2016-6609
- CVE-2016-6608
- CVE-2016-6607
- CVE-2016-6606
- CVE-2015-8980
Source
Related Link
Share with