Test Kennung:	1.3.6.1.4.1.25623.1.0.806735
Kategorie:	Web application abuses
Titel:	phpMyAdmin Security Bypass Vulnerability Nov15 (Linux)
Zusammenfassung:	This host is installed with phpMyAdmin and; is prone to reCaptcha bypass vulnerability.
Beschreibung:	Summary: This host is installed with phpMyAdmin and is prone to reCaptcha bypass vulnerability. Vulnerability Insight: The flaw is due to an error in 'libraries/plugins/auth/AuthenticationCookie.class.php' script while implementing multiple-reCaptcha protection mechanism so that it provide a correct response to a single reCaptcha. Vulnerability Impact: Successfully exploiting this issue may allow remote attackers to bypass multiple-reCaptcha protection mechanism. Affected Software/OS: phpMyAdmin versions 4.3.x before 4.3.13.2 and 4.4.x before 4.4.14.1 on Linux Solution: Upgrade to phpMyAdmin 4.3.13.2 or 4.4.14.1 or later. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Querverweis:	BugTraq ID: 76674 Common Vulnerability Exposure (CVE) ID: CVE-2015-6830 http://www.securityfocus.com/bid/76674 Debian Security Information: DSA-3382 (Google Search) http://www.debian.org/security/2015/dsa-3382 http://lists.fedoraproject.org/pipermail/package-announce/2015-September/166531.html http://lists.fedoraproject.org/pipermail/package-announce/2015-September/166294.html http://lists.fedoraproject.org/pipermail/package-announce/2015-September/166307.html http://www.securitytracker.com/id/1033546
Copyright	Copyright (C) 2015 Greenbone Networks GmbH

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.