Oval Definition:	oval:com.ubuntu.precise:def:20112505000
Revision Date: 2011-07-14 Version: 1 Title: CVE-2011-2505 on Ubuntu 12.04 LTS (precise) - medium. Description: libraries/auth/swekey/swekey.auth.lib.php in the Swekey authentication feature in phpMyAdmin 3.x before 3.3.10.2 and 3.4.x before 3.4.3.1 assigns values to arbitrary parameters referenced in the query string, which allows remote attackers to modify the SESSION superglobal array via a crafted request, related to a "remote variable manipulation vulnerability." Family: unix Class: vulnerability Status: Reference(s): CVE-2011-2505 Platform(s): Ubuntu 12.04 LTS Product(s): Definition Synopsis Ubuntu 12.04 LTS (precise) is installed. AND The 'phpmyadmin' package in precise was vulnerable but has been fixed (note: '4:3.4.3.1-1').
BACK