CVE-2005-1392

CVE-2005-1392

EPSS 0.4%

The SQL install script in phpMyAdmin 2.6.2 is created with world-readable permissions, which allows local users to obtain the initial database password by reading the script.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://bugs.gentoo.org/show_bug.cgi?id=88831 http://security.gentoo.org/glsa/glsa-200504-30.xml http://www.osvdb.org/16053 http://www.vupen.com/english/advisories/2005/0436