Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

Gentoo: GLSA-200702-05 Normal: ADOdb Code Execution Vulnerability

gentoo
Calendar Grey February 6, 2006
Dist Gentoo Esm H88
Inadequate input validation in ADOdb when paired with PostgreSQL exposes potential for command injection vulnerabilities. Updating is advised for enhanced security measures.
ADOdb is vulnerable to SQL injections if used in conjunction with a PostgreSQL database.

Summary

Gentoo Linux Security Advisory GLSA 200602-02 https://security.gentoo.org/ Severity: Normal Title: ADOdb: PostgresSQL command injection Date: February 06, 2006 Bugs: #120215 ID: 200602-02

Synopsis ======= ADOdb is vulnerable to SQL injections if used in conjunction with a PostgreSQL database.
Background ========= ADOdb is an abstraction library for PHP creating a common API for a wide range of database backends.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 dev-php/adodb < 4.71 >= 4.71
========== Andy Staudacher discovered that ADOdb does not properly sanitize all parameters.
Impact ===== By sending specifically crafted requests to an application...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory gentoo command injection sql attack adoDB

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Topics%20covered

Topics Covered

security advisory gentoo command injection sql attack adoDB

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Your message here