09.26
12

Critical: Backdoor in PhpMyAdmin download

by admin ·

A download mirror of SourceForge network has in recent days distributes software PhpMyAdmin in a version equipped with a backdoor.

This is the archive “phpMyAdmin-3.5.2.2-all-languages.zip”, the 22nd probably around 400 users since Have downloaded September. The affected server is located in Korea and has the hostname “CDNetworks-kr-1″, Sourceforge removed him from the mirror network.

The compromised version of the software contains the file “server_sync.php” additional PHP code that evaluates HTTP post data and an installation so vulnerable from the outside. Additional Javascript code is possibly the attacker to detect vulnerable installations, such as the developer Michal Čihař writes in a blog entry.


The Security Team of phpMyAdmin project ranks the vulnerability as critical. It encourages all users to review their installations and in case of doubt to reinstall from a trusted source.

The vulnerability was originally discovered by the security department of the Chinese Internet company Tencent and received the CVE-ID 2012-5159.

Tags: , , , ,

This entry was posted on Wednesday, September 26th, 2012 at 5:14 pm and is filed under Linux News. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

Leave a Reply

«
»