Vulnerability CVE-2016-4412

Vulnerability Name:

CVE-2016-4412 (CCN-120094)

Assigned:

2016-12-10

Published:

2016-12-10

Updated:

2017-07-01

Summary:

An issue was discovered in phpMyAdmin. A user can be tricked into following a link leading to phpMyAdmin, which after authentication redirects to another malicious site. The attacker must sniff the user's valid phpMyAdmin token. All 4.0.x versions (prior to 4.0.10.16) are affected.

CVSS v3 Severity:

4.4 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:N)
3.9 Low (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:N/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): High Privileges Required (PR): Low User Interaction (UI): Required
Scope:	Scope (S): Changed
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): None

7.4 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N)
6.4 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): Required
Scope:	Scope (S): Changed
Impact Metrics:	Confidentiality (C): None Integrity (I): High Availibility (A): None

CVSS v2 Severity:

3.6 Low (CVSS v2 Vector: AV:N/AC:H/Au:S/C:P/I:P/A:N)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): High Authentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): None

6.8 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:S/C:N/I:C/A:N)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): None Integrity (I): Complete Availibility (A): None

Vulnerability Type:

CWE-254

Vulnerability Consequences:

Gain Access

References:

Source: MITRE
Type: CNA
CVE-2016-4412

Source: BID
Type: Third Party Advisory, VDB Entry
94519

Source: CCN
Type: BID-94519
phpMyAdmin CVE-2016-4412 Open Redirection Vulnerability

Source: XF
Type: UNKNOWN
phpmyadmin-cve20164412-open-redirect(120094)

Source: GENTOO
Type: UNKNOWN
GLSA-201701-32

Source: CONFIRM
Type: Patch, Vendor Advisory
https://www.phpmyadmin.net/security/PMASA-2016-57

Source: CCN
Type: phpMyAdmin Security Advisory
PMASA-2016-57 - Open redirection

Vulnerable Configuration:

Configuration 1:

cpe:/a:phpmyadmin:phpmyadmin:4.0.0:*:*:*:*:*:*:*

OR cpe:/a:phpmyadmin:phpmyadmin:4.0.1:*:*:*:*:*:*:*

OR cpe:/a:phpmyadmin:phpmyadmin:4.0.2:*:*:*:*:*:*:*

OR cpe:/a:phpmyadmin:phpmyadmin:4.0.3:*:*:*:*:*:*:*

OR cpe:/a:phpmyadmin:phpmyadmin:4.0.4:*:*:*:*:*:*:*

OR cpe:/a:phpmyadmin:phpmyadmin:4.0.4.1:*:*:*:*:*:*:*

OR cpe:/a:phpmyadmin:phpmyadmin:4.0.4.2:*:*:*:*:*:*:*

OR cpe:/a:phpmyadmin:phpmyadmin:4.0.5:*:*:*:*:*:*:*

OR cpe:/a:phpmyadmin:phpmyadmin:4.0.6:*:*:*:*:*:*:*

OR cpe:/a:phpmyadmin:phpmyadmin:4.0.7:*:*:*:*:*:*:*

OR cpe:/a:phpmyadmin:phpmyadmin:4.0.8:*:*:*:*:*:*:*

OR cpe:/a:phpmyadmin:phpmyadmin:4.0.9:*:*:*:*:*:*:*

OR cpe:/a:phpmyadmin:phpmyadmin:4.0.10:*:*:*:*:*:*:*

OR cpe:/a:phpmyadmin:phpmyadmin:4.0.10.1:*:*:*:*:*:*:*

OR cpe:/a:phpmyadmin:phpmyadmin:4.0.10.2:*:*:*:*:*:*:*

OR cpe:/a:phpmyadmin:phpmyadmin:4.0.10.3:*:*:*:*:*:*:*

OR cpe:/a:phpmyadmin:phpmyadmin:4.0.10.4:*:*:*:*:*:*:*

OR cpe:/a:phpmyadmin:phpmyadmin:4.0.10.5:*:*:*:*:*:*:*

OR cpe:/a:phpmyadmin:phpmyadmin:4.0.10.6:*:*:*:*:*:*:*

OR cpe:/a:phpmyadmin:phpmyadmin:4.0.10.7:*:*:*:*:*:*:*

OR cpe:/a:phpmyadmin:phpmyadmin:4.0.10.8:*:*:*:*:*:*:*

OR cpe:/a:phpmyadmin:phpmyadmin:4.0.10.9:*:*:*:*:*:*:*

OR cpe:/a:phpmyadmin:phpmyadmin:4.0.10.10:*:*:*:*:*:*:*

OR cpe:/a:phpmyadmin:phpmyadmin:4.0.10.11:*:*:*:*:*:*:*

OR cpe:/a:phpmyadmin:phpmyadmin:4.0.10.12:*:*:*:*:*:*:*

OR cpe:/a:phpmyadmin:phpmyadmin:4.0.10.13:*:*:*:*:*:*:*

OR cpe:/a:phpmyadmin:phpmyadmin:4.0.10.14:*:*:*:*:*:*:*

OR cpe:/a:phpmyadmin:phpmyadmin:4.0.10.15:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:phpmyadmin:phpmyadmin:4.0.0:*:*:*:*:*:*:*

OR cpe:/a:phpmyadmin:phpmyadmin:4.0.10.15:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:com.ubuntu.bionic:def:201644120000000	V	CVE-2016-4412 on Ubuntu 18.04 LTS (bionic) - medium.	2016-12-11
oval:com.ubuntu.xenial:def:201644120000000	V	CVE-2016-4412 on Ubuntu 16.04 LTS (xenial) - medium.	2016-12-11
oval:com.ubuntu.disco:def:201644120000000	V	CVE-2016-4412 on Ubuntu 19.04 (disco) - medium.	2016-12-11
oval:com.ubuntu.artful:def:20164412000	V	CVE-2016-4412 on Ubuntu 17.10 (artful) - medium.	2016-12-10
oval:com.ubuntu.trusty:def:20164412000	V	CVE-2016-4412 on Ubuntu 14.04 LTS (trusty) - medium.	2016-12-10
oval:com.ubuntu.bionic:def:20164412000	V	CVE-2016-4412 on Ubuntu 18.04 LTS (bionic) - medium.	2016-12-10
oval:com.ubuntu.xenial:def:20164412000	V	CVE-2016-4412 on Ubuntu 16.04 LTS (xenial) - medium.	2016-12-10
oval:com.ubuntu.cosmic:def:20164412000	V	CVE-2016-4412 on Ubuntu 18.10 (cosmic) - medium.	2016-12-10
oval:com.ubuntu.cosmic:def:201644120000000	V	CVE-2016-4412 on Ubuntu 18.10 (cosmic) - medium.	2016-12-10
oval:com.ubuntu.precise:def:20164412000	V	CVE-2016-4412 on Ubuntu 12.04 LTS (precise) - medium.	2016-12-10

BACK