Threat Level: green Handler on Duty: Xavier Mertens

SANS ISC: Exploit tools are publicly available for phpMyAdmin SANS ISC InfoSec Forums

Participate: Learn more about our honeypot network
https://isc.sans.edu/honeypot.html

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Exploit tools are publicly available for phpMyAdmin

As a follow-up to our earlier diary about phpMyAdmin scanning, there is at least 2 exploits posted in the last 20 days on public forums for exploiting the bug from March 2009 described here: www.phpmyadmin.net/home_page/security/PMASA-2009-3.php.  Suggested advice is to re-verify that your phpMyAdmin is patched and also not accessible to the general Internet to prevent future exploitation of unknown bugs.

Handler: Kyle Haugsness

Kyle

112 Posts

Sign Up for Free or Log In to start participating in the conversation!