Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-1392

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2005-1392
Last Modified 07 Mar 2011 09:21:42
Published 03 May 2005 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2005-1392

Summary

The SQL install script in phpMyAdmin 2.6.2 is created with world-readable permissions, which allows local users to obtain the initial database password by reading the script.

Vulnerable Systems

Application

  • Phpmyadmin 2.6.2


References

VUPEN - ADV-2005-0436

OSVDB - 16053

GENTOO - GLSA-200504-30


Last Updated: 27 May 2016 10:40:09