FreeBSD : phpMyAdmin -- Multiple XSS in Table operations, Database structure, Trigger and Visualize GIS data pages (db1d3340-e83b-11e1-999b-e0cb4e266481)

NASLDB: FreeBSD : phpMyAdmin -- Multiple XSS in Table operations, Database structure, Trigger and Visualize GIS data pages (db1d3340-e83b-11e1-999b-e0cb4e266481)

General

ID: 61566
Name: FreeBSD : phpMyAdmin — Multiple XSS in Table operations, Database structure, Trigger and Visualize GIS data pages (db1d3340-e83b-11e1-999b-e0cb4e266481)

Summary: Checks for updated package in pkg_info output

Credits: Tenable Network Security, Inc.

Classification

Risk: –

CVSS: –
CVSS Base Vector: CVSS2#AV:N/AC:M/Au:S/C:N/I:P/A:N
CVSS Temporal Vector: –

Port: 0
Family: FreeBSD Local Security Checks
Type: Local

Description

The phpMyAdmin development team reports :

Using a crafted table name, it was possible to produce a XSS : 1) On
the Database Structure page, creating a new table with a crafted name
2) On the Database Structure page, using the Empty and Drop links of
the crafted table name 3) On the Table Operations page of a crafted
table, using the ‘Empty the table (TRUNCATE)’ and ‘Delete the table
(DROP)’ links 4) On the Triggers page of a database containing tables
with a crafted name, when opening the ‘Add Trigger’ popup 5) When
creating a trigger for a table with a crafted name, with an invalid
definition. Having crafted data in a database table, it was possible
to produce a XSS : 6) When visualizing GIS data, having a crafted
label name.

Exploiting

Exploit Available: –
Exploitability Ease: –

Sources

CVE: CVE-2012-4345
OSVDB: –
Bugtraq: –
scipID: –

Timeline

Vulnerability Disclosure: 2012/08/12
Patch Release: 2012/08/17
Plugin Release: 2012/08/17

Plugin

Version: 1.2
Filename: freebsd_pkg_db1d3340e83b11e1999be0cb4e266481.nasl
Filesize: 4871 bytes
MD5 Hash: 3efa29262de7b54c98405e89bb43087a

Identification: Host/local_checks_enabled
Require Keys: Host/local_checks_enabled", "Host/FreeBSD/release", "Host/FreeBSD/pkg_info
Dependencies: "ssh_get_info.nasl"