PHPMyAdmin File Inclusion Arbitrary Command Execution Vulnerability

Bugtraq ID:	2642
Class:	Input Validation Error
CVE:	CAN-2001-0478
Remote:	Yes
Local:	No
Published:	Apr 23 2001 12:00AM
Updated:	Apr 23 2001 12:00AM
Credit:	This vulnerability was announced to Bugtraq in a Secure Reality Security Advisory posted on April 24, 2001.
Vulnerable:	phpMyAdmin phpMyAdmin 2.1 - Debian Linux 2.2 sparc - Debian Linux 2.2 sparc - Debian Linux 2.2 sparc - Debian Linux 2.2 powerpc - Debian Linux 2.2 powerpc - Debian Linux 2.2 powerpc - Debian Linux 2.2 arm - Debian Linux 2.2 arm - Debian Linux 2.2 arm - Debian Linux 2.2 alpha - Debian Linux 2.2 alpha - Debian Linux 2.2 alpha - Debian Linux 2.2 68k - Debian Linux 2.2 68k - Debian Linux 2.2 68k - Debian Linux 2.2 - Debian Linux 2.2 - Debian Linux 2.2 - FreeBSD FreeBSD 4.2 - FreeBSD FreeBSD 4.2 - FreeBSD FreeBSD 4.2 - FreeBSD FreeBSD 3.5.1 - FreeBSD FreeBSD 3.5.1 - FreeBSD FreeBSD 3.5.1 - MandrakeSoft Linux Mandrake 7.2 - MandrakeSoft Linux Mandrake 7.2 - MandrakeSoft Linux Mandrake 7.2 - MandrakeSoft Linux Mandrake 7.1 - MandrakeSoft Linux Mandrake 7.1 - MandrakeSoft Linux Mandrake 7.1 - MandrakeSoft Linux Mandrake 7.0 - MandrakeSoft Linux Mandrake 7.0 - MandrakeSoft Linux Mandrake 7.0 - OpenBSD OpenBSD 2.8 - OpenBSD OpenBSD 2.8 - OpenBSD OpenBSD 2.8 - OpenBSD OpenBSD 2.7 - OpenBSD OpenBSD 2.7 - OpenBSD OpenBSD 2.7 - OpenBSD OpenBSD 2.6 - OpenBSD OpenBSD 2.6 - OpenBSD OpenBSD 2.6 - RedHat Linux 7.0 - RedHat Linux 7.0 - RedHat Linux 7.0 - RedHat Linux 6.2 - RedHat Linux 6.2 - RedHat Linux 6.2 - S.u.S.E. Linux 7.1 - S.u.S.E. Linux 7.0 - S.u.S.E. Linux 7.0 - S.u.S.E. Linux 7.0 - S.u.S.E. Linux 6.4 - S.u.S.E. Linux 6.4 - S.u.S.E. Linux 6.4 - Sun Solaris 8_x86 - Sun Solaris 8_x86 - Sun Solaris 8_x86 - Sun Solaris 8 - Sun Solaris 8 - Sun Solaris 8 - Sun Solaris 7.0_x86 - Sun Solaris 7.0_x86 - Sun Solaris 7.0_x86 - Sun Solaris 7.0 - Sun Solaris 7.0 - Sun Solaris 7.0 - Sun Solaris 2.6_x86 - Sun Solaris 2.6_x86 - Sun Solaris 2.6_x86 - Sun Solaris 2.6 - Sun Solaris 2.6 - Sun Solaris 2.6

Not Vulnerable: