Re: phpMyAdmin server_privileges.php SQL Injection Vulnerabilities.

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Re: phpMyAdmin server_privileges.php SQL Injection Vulnerabilities.
From: michal@xxxxxxxxx
Date: 19 Dec 2005 08:50:18 -0000
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm

Hi

There is no vulnerability in this - user needs to be logged in. You can do same 
(without messing SQL injection) by directly passing SQL statements to 
import.php or sql.php. Yes phpMyAdmin allows to execute queries to 
authenticated users, but it's main task of this program and can not be 
considered as vulnerability.

Michal

Prev by Date: [ GLSA 200512-10 ] Opera: Command-line URL shell command injection
Next by Date: Authenticated EIGRP DoS / Information leak
Previous by thread: phpMyAdmin server_privileges.php SQL Injection Vulnerabilities.
Next by thread: [SECURITY] [DSA 923-1] New dropbear packages fix arbitrary code execution
Index(es):
- Date
- Thread