Vulnerability CVE-2008-5587

Vulnerability Name:

CVE-2008-5587 (CCN-47140)

Assigned:

2008-12-06

Published:

2008-12-06

Updated:

2017-09-29

Summary:

Directory traversal vulnerability in libraries/lib.inc.php in phpPgAdmin 4.2.1 and earlier, when register_globals is enabled, allows remote attackers to read arbitrary files via a .. (dot dot) in the _language parameter to index.php.

CVSS v3 Severity:

7.3 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): Low

CVSS v2 Severity:

4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N)
3.2 Low (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): None Availibility (A): None

6.8 Medium (CCN CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P)
5.0 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Athentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

Vulnerability Type:

CWE-22

Vulnerability Consequences:

Gain Access

References:

Source: MITRE
Type: CNA
CVE-2008-5587

Source: SUSE
Type: UNKNOWN
SUSE-SR:2009:004

Source: SUSE
Type: UNKNOWN
openSUSE-SU-2012:0493

Source: CCN
Type: phpPgAdmin Web site
phpPgAdmin

Source: CCN
Type: SA33014
phpPgAdmin "_language" Local File Inclusion Vulnerability

Source: SECUNIA
Type: Vendor Advisory
33014

Source: SECUNIA
Type: UNKNOWN
33263

Source: SREASON
Type: UNKNOWN
4737

Source: CCN
Type: SourceForge.net: Files
phpPgAdmin, File Release Notes and Changelog, Release Name: phpPgAdmin-4.2.2

Source: DEBIAN
Type: UNKNOWN
DSA-1693

Source: DEBIAN
Type: DSA-1693
phppgadmin -- several vulnerabilities

Source: CCN
Type: OSVDB ID: 50545
phpPgAdmin index.php _language Parameter Traversal Local File Inclusion

Source: BID
Type: Exploit
32670

Source: CCN
Type: BID-32670
phpPgAdmin '_language' Parameter Local File Include Vulnerability

Source: XF
Type: UNKNOWN
phppgadmin-index-file-include(47140)

Source: XF
Type: UNKNOWN
phppgadmin-index-file-include(47140)

Source: EXPLOIT-DB
Type: UNKNOWN
7363

Source: SUSE
Type: SUSE-SR:2009:004
SUSE Security Summary Report

Vulnerable Configuration:

Configuration 1:

cpe:/a:phppgadmin:phppgadmin:2.2:*:*:*:*:*:*:*

OR cpe:/a:phppgadmin:phppgadmin:2.2.1:*:*:*:*:*:*:*

OR cpe:/a:phppgadmin:phppgadmin:3.1:*:*:*:*:*:*:*

OR cpe:/a:phppgadmin:phppgadmin:3.4.1:*:*:*:*:*:*:*

OR cpe:/a:phppgadmin:phppgadmin:3.5:*:*:*:*:*:*:*

OR cpe:/a:phppgadmin:phppgadmin:3.5.2:*:*:*:*:*:*:*

OR cpe:/a:phppgadmin:phppgadmin:3.5.3:*:*:*:*:*:*:*

OR cpe:/a:phppgadmin:phppgadmin:4.1.1:*:*:*:*:*:*:*

OR cpe:/a:phppgadmin:phppgadmin:*:*:*:*:*:*:*:* (Version <= 4.2.1)

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:20085587	V	CVE-2008-5587	2022-06-30
oval:org.opensuse.security:def:113143	P	phpPgAdmin-5.1-5.1 on GA media (Moderate)	2022-01-17
oval:org.opensuse.security:def:106571	P	phpPgAdmin-5.1-5.1 on GA media (Moderate)	2021-10-01
oval:org.mitre.oval:def:7719	P	DSA-1693 phppgadmin -- several vulnerabilities	2014-06-23
oval:org.mitre.oval:def:19797	P	DSA-1693-1 phppgadmin - several vulnerabilities	2014-06-23
oval:org.debian:def:1693	V	several vulnerabilities	2008-12-27

BACK