phpMyAdmin

• PMASA-2010-3
• PMASA-2010-2
• PMASA-2010-1
• PMASA-2009-6
• PMASA-2009-5
• PMASA-2009-4
• PMASA-2009-3
• PMASA-2009-2
• PMASA-2009-1
• PMASA-2008-10
• PMASA-2008-9
• PMASA-2008-8
• PMASA-2008-7
• PMASA-2008-6
• PMASA-2008-5
• PMASA-2008-4
• PMASA-2008-3
• PMASA-2008-2
• PMASA-2008-1
• PMASA-2007-8
• PMASA-2007-7
• PMASA-2007-6
• PMASA-2007-5
• PMASA-2007-4
• PMASA-2007-3
• PMASA-2007-2
• PMASA-2007-1
• PMASA-2006-9
• PMASA-2006-8
• PMASA-2006-7
• PMASA-2006-6
• PMASA-2006-5
• PMASA-2006-4
• PMASA-2006-3
• PMASA-2006-2
• PMASA-2006-1
• PMASA-2005-9
• PMASA-2005-8
• PMASA-2005-7
• PMASA-2005-6
• PMASA-2005-5
• PMASA-2005-4
• PMASA-2005-3
• PMASA-2005-2
• PMASA-2005-1
• PMASA-2004-4
• PMASA-2004-3
• PMASA-2004-2
• PMASA-2004-1
• PMASA-2003-1

PMASA-2009-1

Announcement-ID: PMASA-2009-1

Date: 2009-03-24

Summary

HTTP Response Splitting and file inclusion vulnerability.

Description

The BLOB streaming feature allowed attacker to include arbitrary files and inject HTTP headers using crafted URL parameters.

Severity

We consider this vulnerability to be critical.

Affected Versions

For 2.11.x: not affected as it lacks BLOB streaming support.
For 3.x: versions since 3.1.0.0 and before 3.1.3.1.

Solution

Upgrade to phpMyAdmin 3.1.3.1 or apply patch listed below.

References

Thanks to Manuel Lopez Gallego (Luisyana) and Santiago Rodríguez Collazo, who have discovered this issue and reported it to us.

Assigned CVE ids: CVE-2009-1148 CVE-2009-1149

Patches

Revision 12303 was applied on all branches.

For further information and in case of questions, please contact the phpMyAdmin team. Our website is http://www.phpmyadmin.net.