PhpMyAdmin long password processing DoS Vulnerability
Release date: 2014-3 3
Updated on: 2014-6 6
Affected Systems:
PhpMyAdmin 4.x
PhpMyAdmin
Description:
Bugtraq id: 71434
CVE (CAN) ID: CVE-2014-9218
Phpmyadmin is an online management tool for MySQL databases. Its main functions include creating data tables online, running SQL statements, searching and querying data, and importing and exporting data.
A denial of service vulnerability exists in phpMyAdmin versions earlier than 4.0.10.7, 4.1.14.8, and 4.2.13.1. Attackers can exploit this vulnerability to cause the affected applications to crash.
<* Source: Javier Nieto
*>
Suggestion:
Vendor patch:
PhpMyAdmin
----------
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:
Http://www.phpmyadmin.net/home_page/security/
Example of LAMP architecture collaborative application-phpMyAdmin
PhpMyAdmin and Wordpress for LAMP applications
PhpMyAdmin logon timeout Solution
Install phpMyAdmin and Adminer in Ubuntu
Implement SSL functions based on LAMP and install phpMyAdmin
Configure the LAMP + phpMyAdmin PHP (5.5.9) development environment in Ubuntu 14.04
PhpMyAdmin details: click here
PhpMyAdmin: click here
This article permanently updates the link address: