Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-0146

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2006-0146
Last Modified 14 Jun 2011 12:00:00
Published 09 Jan 2006 06:03:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-0146

Summary

The server.php test script in ADOdb for PHP before 4.70, as used in multiple products including (1) Mantis, (2) PostNuke, (3) Moodle, (4) Cacti, (5) Xaraya, (6) PHPOpenChat, (7) MAXdev MD-Pro, and (8) MediaBeez, when the MySQL root password is empty, allows remote attackers to execute arbitrary SQL commands via the sql parameter.

Vulnerable Systems

Application

  • John Lim Adodb 4.66

  • John Lim Adodb 4.68

  • Mantis 0.19.4

  • Mantis 1.0.0 Rc4

  • Mediabeez

  • Moodle 1.5.3

  • Postnuke Software Foundation Postnuke 0.761

  • The Cacti Group Cacti 0.8.6g


References

CONFIRM - http://www.xaraya.com/index.php/news/569

BID - 16187

BUGTRAQ - 20060202 Bug for libs in php link directory 2.0

OSVDB - 22290

GENTOO - GLSA-200604-07

DEBIAN - DSA-1031

DEBIAN - DSA-1030

DEBIAN - DSA-1029

MISC - http://secunia.com/secunia_research/2005-64/advisory/

SECUNIA - 19699

SECUNIA - 19591

SECUNIA - 19590

SECUNIA - 19563

SECUNIA - 19555

SECUNIA - 18720

SECUNIA - 18276

SECUNIA - 18260

SECUNIA - 18233

SECUNIA - 17418

XF - adodb-server-command-execution(24051)

VUPEN - ADV-2006-1419

VUPEN - ADV-2006-1305

VUPEN - ADV-2006-1304

VUPEN - ADV-2006-0447

VUPEN - ADV-2006-0370

VUPEN - ADV-2006-0105

VUPEN - ADV-2006-0104

VUPEN - ADV-2006-0103

VUPEN - ADV-2006-0102

VUPEN - ADV-2006-0101

BUGTRAQ - 20070418 MediaBeez Sql query Execution .. Wear isn't ?? :)

BUGTRAQ - 20060409 PhpOpenChat 3.0.x ADODB Server.php

CONFIRM - http://www.maxdev.com/Article550.phtml

SREASON - 713

SECUNIA - 24954

SECUNIA - 19691

SECUNIA - 19600

SECUNIA - 18267

SECUNIA - 18254

MISC - http://retrogod.altervista.org/phpopenchat_30x_sql_xpl.html

BUGTRAQ - 20060409 PhpOpenChat 3.0.x ADODB Server.php "sql" SQL injection


Last Updated: 27 May 2016 10:44:52