CVE-2011-4107
Last modified
CVE-2011-4107 is a medium-severity vulnerability rated 6.5/10 on the CVSS scale. The simplexml_load_string function in the XML import plug-in (libraries/import/xml.php) in phpMyAdmin 3.4.x before 3.4.7.1 and 3.3.x before 3.3.10.5 allows remote authenticated users to read arbitrary files via XML data containing external entity references, aka an XML external entity (XXE) injection attack.. EPSS estimates a 12.85% chance of exploitation in the next 30 days.
Description
The simplexml_load_string function in the XML import plug-in (libraries/import/xml.php) in phpMyAdmin 3.4.x before 3.4.7.1 and 3.3.x before 3.3.10.5 allows remote authenticated users to read arbitrary files via XML data containing external entity references, aka an XML external entity (XXE) injection attack.
Metrics
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Phpmyadmin | Phpmyadmin | >= 3.3.0.0, < 3.3.10.5 |
| Phpmyadmin | Phpmyadmin | >= 3.4.0.0, < 3.4.7.1 |
| Fedoraproject | Fedora | 14 |
| Fedoraproject | Fedora | 15 |
| Fedoraproject | Fedora | 16 |
| Debian | Debian Linux | 5.0 |
References
- http://lists.fedoraproject.org/pipermail/package-announce/2011-November/069625.htmlMailing List, Third Party Advisory
- http://lists.fedoraproject.org/pipermail/package-announce/2011-November/069635.htmlMailing List, Third Party Advisory
- http://lists.fedoraproject.org/pipermail/package-announce/2011-November/069649.htmlMailing List, Third Party Advisory
- http://osvdb.org/76798Broken Link
- http://packetstormsecurity.org/files/view/106511/phpmyadmin-fileread.txtBroken Link, Exploit
- http://seclists.org/fulldisclosure/2011/Nov/21Exploit, Mailing List, Third Party Advisory
- http://secunia.com/advisories/46447Broken Link, Vendor Advisory
- http://securityreason.com/securityalert/8533Broken Link
- http://www.debian.org/security/2012/dsa-2391Mailing List
- http://www.phpmyadmin.net/home_page/security/PMASA-2011-17.phpPatch, Vendor Advisory
- http://www.securityfocus.com/bid/50497Broken Link, Third Party Advisory, VDB Entry
- http://www.wooyun.org/bugs/wooyun-2010-03185Broken Link, Exploit
- https://bugzilla.redhat.com/show_bug.cgi?id=751112Exploit, Issue Tracking
- https://exchange.xforce.ibmcloud.com/vulnerabilities/71108Third Party Advisory, VDB Entry
- http://lists.fedoraproject.org/pipermail/package-announce/2011-November/069625.htmlMailing List, Third Party Advisory
- http://lists.fedoraproject.org/pipermail/package-announce/2011-November/069635.htmlMailing List, Third Party Advisory
- http://lists.fedoraproject.org/pipermail/package-announce/2011-November/069649.htmlMailing List, Third Party Advisory
- http://osvdb.org/76798Broken Link
- http://packetstormsecurity.org/files/view/106511/phpmyadmin-fileread.txtBroken Link, Exploit
- http://seclists.org/fulldisclosure/2011/Nov/21Exploit, Mailing List, Third Party Advisory
- http://secunia.com/advisories/46447Broken Link, Vendor Advisory
- http://securityreason.com/securityalert/8533Broken Link
- http://www.debian.org/security/2012/dsa-2391Mailing List
- http://www.phpmyadmin.net/home_page/security/PMASA-2011-17.phpPatch, Vendor Advisory
- http://www.securityfocus.com/bid/50497Broken Link, Third Party Advisory, VDB Entry
- http://www.wooyun.org/bugs/wooyun-2010-03185Broken Link, Exploit
- https://bugzilla.redhat.com/show_bug.cgi?id=751112Exploit, Issue Tracking
- https://exchange.xforce.ibmcloud.com/vulnerabilities/71108Third Party Advisory, VDB Entry
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2011-4107?
How severe is CVE-2011-4107?
How do I fix CVE-2011-4107?
Are you affected by CVE-2011-4107?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST