Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 523
Alerts This Week
Warning Icon 1 523

Gentoo: 200504-30 Normal: phpMyAdmin Insecure SQL Script Threat

gentoo
Calendar Grey April 30, 2005
Scroller Gentoo
phpMyAdmin on Gentoo exhibits vulnerable SQL script permissions, posing a threat to database security; essential measures for remediation outlined.
phpMyAdmin leaves the SQL install script with insecure permissions, potentially leading to a database compromise

Summary

Gentoo Linux Security Advisory GLSA 200504-30 https://security.gentoo.org/ Severity: Normal Title: phpMyAdmin: Insecure SQL script installation Date: April 30, 2005 Bugs: #88831 ID: 200504-30

Synopsis ======= phpMyAdmin leaves the SQL install script with insecure permissions, potentially leading to a database compromise.
Background ========= phpMyAdmin is a tool written in PHP intended to handle the administration of MySQL databases from a web-browser. phpMyAdmin uses a pma MySQL user to control the linked-tables infrastructure. The SQL install script sets the initial password for the pma user.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 dev-db/phpmyadmin < 2.6.2-r1 ...

Read the Full Advisory

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround