Main Vulnerability Database Vulnerabilities #VU22940

Protection Mechanism Failure in phpMyAdmin - CVE-2017-18264

Published: November 23, 2019

Vulnerability identifier: #VU22940

CSH Severity: Medium

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Green

CVE-ID: CVE-2017-18264

CWE-ID: CWE-693

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: phpMyAdmin

Affected software:
phpMyAdmin

Detailed vulnerability description

The vulnerability allows a remote attacker to bypass certain security restrictions.

The vulnerability exists due to unexpected behavior of the subst() PHP function that returns false when given '' as the first argument in PHP 5.x. A remote attacker can bypass configured "$cfg['Servers'][$i]['AllowNoPassword'] = false" setting and login under account that has not password set.

How to mitigate CVE-2017-18264

Install updates from vendor's website.

Sources

http://www.securityfocus.com/bid/97211
https://lists.debian.org/debian-lts-announce/2018/07/msg00006.html
https://www.phpmyadmin.net/security/PMASA-2017-8/

Protection Mechanism Failure in phpMyAdmin - CVE-2017-18264

Detailed vulnerability description

How to mitigate CVE-2017-18264

Sources

Please verify you're human