First published: Wed Nov 16 2005(Updated: )
CRLF injection vulnerability in phpMyAdmin before 2.6.4-pl4 allows remote attackers to conduct HTTP response splitting attacks via unspecified scripts.
Credit: security@debian.org
Affected Software | Affected Version | How to fix |
---|---|---|
composer/phpmyadmin/phpmyadmin | <2.6.4-pl4 | 2.6.4-pl4 |
debian/phpmyadmin | 4:5.0.4+dfsg2-2+deb11u1 4:5.2.1+dfsg-1 | |
PhpMyAdmin | =2.2.0 | |
PhpMyAdmin | =2.2.7_pl1 | |
PhpMyAdmin | =2.5.2_pl1 | |
PhpMyAdmin | =2.5.3 | |
PhpMyAdmin | =2.5.4 | |
PhpMyAdmin | =2.5.5_pl1 | |
PhpMyAdmin | =2.5.6_rc2 | |
PhpMyAdmin | =2.5.7_pl1 | |
PhpMyAdmin | =2.6.0_pl3 | |
PhpMyAdmin | =2.6.1_pl3 | |
PhpMyAdmin | =2.6.2_pl1 | |
PhpMyAdmin | =2.6.3_pl1 | |
PhpMyAdmin | =2.6.4_pl3 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2005-3621 has a medium severity rating due to its potential for HTTP response splitting attacks.
To fix CVE-2005-3621, upgrade phpMyAdmin to version 2.6.4-pl4 or later.
CVE-2005-3621 affects phpMyAdmin versions prior to 2.6.4-pl4, including 2.5.2_pl1, 2.6.2_pl1, and 2.6.3_pl1.
CVE-2005-3621 allows attackers to conduct HTTP response splitting attacks.
CVE-2005-3621 is a remote vulnerability that can be exploited by attackers over the network.