What is the severity of CVE-2005-0459?

CVE-2005-0459 has a severity rating of moderate, as it allows remote users to determine the server's full path.

How do I fix CVE-2005-0459?

To fix CVE-2005-0459, upgrade to phpMyAdmin version 2.6.2 or later to ensure proper path obfuscation.

What versions are affected by CVE-2005-0459?

CVE-2005-0459 affects phpMyAdmin versions up to and including 2.6.2-dev, as well as earlier versions.

What impact does CVE-2005-0459 have on my server?

CVE-2005-0459 may expose sensitive information regarding the file structure of your server to remote attackers.

Is CVE-2005-0459 a vulnerability related to PHP error messages?

Yes, CVE-2005-0459 exploits PHP error messages to reveal the full web root path.

Vulnerability/
CVE-2005-0459

medium

CWE

NVD-CWE-Other

17/2/2005

7/8/2024

CVE-2005-0459

First published: Thu Feb 17 2005(Updated: )

phpMyAdmin 2.6.2-dev, and possibly earlier versions, allows remote attackers to determine the full path of the web root via a direct request to select_lang.lib.php, which reveals the path in a PHP error message.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
PhpMyAdmin	=2.0
PhpMyAdmin	=2.0.1
PhpMyAdmin	=2.0.2
PhpMyAdmin	=2.0.3
PhpMyAdmin	=2.0.4
PhpMyAdmin	=2.0.5
PhpMyAdmin	=2.1
PhpMyAdmin	=2.1.1
PhpMyAdmin	=2.1.2
PhpMyAdmin	=2.2.2
PhpMyAdmin	=2.2.3
PhpMyAdmin	=2.2.4
PhpMyAdmin	=2.2.5
PhpMyAdmin	=2.2.6
PhpMyAdmin	=2.2_pre1
PhpMyAdmin	=2.2_rc1
PhpMyAdmin	=2.2_rc2
PhpMyAdmin	=2.2_rc3
PhpMyAdmin	=2.3.1
PhpMyAdmin	=2.3.2
PhpMyAdmin	=2.4.0
PhpMyAdmin	=2.5.0
PhpMyAdmin	=2.5.1
PhpMyAdmin	=2.5.2
PhpMyAdmin	=2.5.4
PhpMyAdmin	=2.5.5
PhpMyAdmin	=2.5.5_pl1
PhpMyAdmin	=2.5.5_rc1
PhpMyAdmin	=2.5.5_rc2
PhpMyAdmin	=2.5.6_rc1
PhpMyAdmin	=2.5.7
PhpMyAdmin	=2.5.7_pl1
PhpMyAdmin	=2.6.0_pl1
PhpMyAdmin	=2.6.0_pl2
PhpMyAdmin	=2.6.0_pl3
PhpMyAdmin	=2.6.2_dev

Never miss a vulnerability like this again

Reference Links

http://securitytracker.com/id?1013210

Frequently Asked Questions

What is the severity of CVE-2005-0459?
CVE-2005-0459 has a severity rating of moderate, as it allows remote users to determine the server's full path.
How do I fix CVE-2005-0459?
To fix CVE-2005-0459, upgrade to phpMyAdmin version 2.6.2 or later to ensure proper path obfuscation.
What versions are affected by CVE-2005-0459?
CVE-2005-0459 affects phpMyAdmin versions up to and including 2.6.2-dev, as well as earlier versions.
What impact does CVE-2005-0459 have on my server?
CVE-2005-0459 may expose sensitive information regarding the file structure of your server to remote attackers.
Is CVE-2005-0459 a vulnerability related to PHP error messages?
Yes, CVE-2005-0459 exploits PHP error messages to reveal the full web root path.

agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/severity
agent/references
agent/last-modified-date
agent/weakness
agent/author
agent/description
agent/first-publish-date
agent/event
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
collector/nvd-historical
vendor/phpmyadmin
canonical/phpmyadmin
version/phpmyadmin/2.0
version/phpmyadmin/2.0.1
version/phpmyadmin/2.0.2
version/phpmyadmin/2.0.3
version/phpmyadmin/2.0.4
version/phpmyadmin/2.0.5
version/phpmyadmin/2.1
version/phpmyadmin/2.1.1
version/phpmyadmin/2.1.2
version/phpmyadmin/2.2.2
version/phpmyadmin/2.2.3
version/phpmyadmin/2.2.4
version/phpmyadmin/2.2.5
version/phpmyadmin/2.2.6
version/phpmyadmin/2.2_pre1
version/phpmyadmin/2.2_rc1
version/phpmyadmin/2.2_rc2
version/phpmyadmin/2.2_rc3
version/phpmyadmin/2.3.1
version/phpmyadmin/2.3.2
version/phpmyadmin/2.4.0
version/phpmyadmin/2.5.0
version/phpmyadmin/2.5.1
version/phpmyadmin/2.5.2
version/phpmyadmin/2.5.4
version/phpmyadmin/2.5.5
version/phpmyadmin/2.5.5_pl1
version/phpmyadmin/2.5.5_rc1
version/phpmyadmin/2.5.5_rc2
version/phpmyadmin/2.5.6_rc1
version/phpmyadmin/2.5.7
version/phpmyadmin/2.5.7_pl1
version/phpmyadmin/2.6.0_pl1
version/phpmyadmin/2.6.0_pl2
version/phpmyadmin/2.6.0_pl3
version/phpmyadmin/2.6.2_dev