phpMyAdmin gets patch for multiple vulnerabilities

Security releases phpMyAdmin 3.4.3.1 and 3.3.10.2 fix four critical vulnerabilities reported by Secunia.

SearchSecurity.in Staff

Published: 06 Jul 2011 5:00

Popular MySQL administration tool phpMyAdmin has received fixes for vulnerabilities that could allow attackers to inject and execute arbitrary code. Termed as security releases by the developers, the latest versions phpMyAdmin 3.4.3.1 and 3.3.10.2 patch critical vulnerabilities reported by security research firm Secunia.

phpMyAdmin versions prior to 3.3.10.2 and 3.4.3.1 are affected by these vulnerabilities. Secunia clarifies that branch 2.11.x of phpMyAdmin is not affected by the vulnerabilities. The developers recommend that all users using older phpMyAdmin versions immediately update to the new versions.

According to Secunia, the vulnerable phpMyAdmin functions include Swekey_login(),PMA_createTargetTables() and PMA_displayTableBody(). The firm also reported a setup script vulnerability that could allow arbitrary PHP code injection. More details about these vulnerabilities are available at the Secunia advisory.

Read more on Data breach incident management and recovery

Critical security patch for Adobe Flash Player Adobe Systems Inc. has patched multiple Adobe Flash Player flaws attackers could exploit to hijack computers and cause a variety of damage.

Cisco issues CallManager security update Security flaws in Cisco CallManager and Unified Communications Manager could be exploited for cross-site scripting and SQL injection attacks, but a security update is available.

CA fixes multiple flaws in back-up product Also in Bug Briefs: Cisco patches an IOS flaw, HP fixes OpenView glitches; Adobe fixes critical vulnerabilities; and more Mac OS X flaws are disclosed.

Bug Briefs: CA fixes multiple flaws in back-up product Also in Bug Briefs: Cisco patches an IOS flaw, HP fixes OpenView glitches; Adobe fixes critical vulnerabilities; and more Mac OS X flaws are disclosed.

Abobe fixes critical flaws Adobe Reader 8 fixes flaws attackers could exploit to launch cross-site-scripting (XSS) attacks. The flaws relate to errors in how the program handles .pdf files.

SearchCIO

phpMyAdmin gets patch for multiple vulnerabilities

Security releases phpMyAdmin 3.4.3.1 and 3.3.10.2 fix four critical vulnerabilities reported by Secunia.

Read more on Data breach incident management and recovery

Start the conversation

0 comments

Please create a username to comment.

-ADS BY GOOGLE

SearchCIO

Top edge computing trends to watch in 2020

Shell, Halliburton, Unibap AB execs share real-world AI strategies

What's the difference between RPA and IPA?

SearchSecurity

Use a data privacy framework to keep your information secure

DOJ takes action against Dridex malware group, Evil Corp

Session cookie mishap exposed HackerOne private reports

SearchNetworking

Test your knowledge of SD-WAN deployments and testing

4 SD-WAN vendors integrate with AWS Transit Gateway

Assess the Wi-Fi 6 features available in Wave 1 and Wave 2

SearchDataCenter

Comparing Linux distributions: Red Hat vs. Ubuntu

Get eco-friendly with LEED data center certification

Top 4 open source automation tools for admins

SearchDataManagement

Data warehouse technologies evolve as vendors look skyward

Top database cloud migration considerations for enterprises

Amazon cloud database and data analytics expand

Read more on Data breach incident management and recovery

Start the conversation

0 comments

Register

Login

Forgot your password?

Your password has been sent to:

Please create a username to comment.