PT-2007-1224 · Phpmyadmin · Phpmyadmin

Christian Schmidt

·

Published

2007-01-19

·

Updated

2011-03-08

·

CVE-2006-6944

CVSS v2.0

7.5

High

VectorAV:N/AC:L/Au:N/C:P/I:P/A:P
Name of the Vulnerable Software and Affected Versions: phpMyAdmin versions prior to 2.9.1.1
Description: The issue allows remote attackers to bypass access rules based on IP addresses by using false headers.
Recommendations: For versions prior to 2.9.1.1, update to version 2.9.1.1 or later to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Related Identifiers

CVE-2006-6944
DSA-1370-1
DSA-1370-2

Affected Products

Phpmyadmin