Threat Level: green Handler on Duty: Manuel Humberto Santander Pelaez

SANS ISC: InfoSec Handlers Diary Blog InfoSec Handlers Diary Blog


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Exploit tools are publicly available for phpMyAdmin

Published: 2009-06-24
Last Updated: 2009-06-24 16:42:44 UTC
by Kyle Haugsness (Version: 1)
0 comment(s)

As a follow-up to our earlier diary about phpMyAdmin scanning, there is at least 2 exploits posted in the last 20 days on public forums for exploiting the bug from March 2009 described here: www.phpmyadmin.net/home_page/security/PMASA-2009-3.php.  Suggested advice is to re-verify that your phpMyAdmin is patched and also not accessible to the general Internet to prevent future exploitation of unknown bugs.

Handler: Kyle Haugsness

Keywords: phpMyAdmin
0 comment(s)
Diary Archives