CVE-2006-0146

NameCVE-2006-0146
DescriptionThe server.php test script in ADOdb for PHP before 4.70, as used in multiple products including (1) Mantis, (2) PostNuke, (3) Moodle, (4) Cacti, (5) Xaraya, (6) PHPOpenChat, (7) MAXdev MD-Pro, and (8) MediaBeez, when the MySQL root password is empty, allows remote attackers to execute arbitrary SQL commands via the sql parameter.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
ReferencesDSA-1029-1, DSA-1030-1, DSA-1031-1
Debian Bugs349985

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
cacti (PTS)jessie, jessie (lts)0.8.8b+dfsg-8+deb8u10fixed
stretch (security), stretch (lts), stretch0.8.8h+ds1-10+deb9u2fixed
buster (security), buster, buster (lts)1.2.2+ds1-2+deb10u6fixed
bullseye1.2.16+ds1-2+deb11u3fixed
bullseye (security)1.2.16+ds1-2+deb11u4fixed
bookworm1.2.24+ds1-1+deb12u4fixed
bookworm (security)1.2.24+ds1-1+deb12u2fixed
sid, trixie1.2.28+ds1-2fixed
libphp-adodb (PTS)jessie, jessie (lts)5.15-1+deb8u2fixed
stretch (security), stretch (lts), stretch5.20.9-1+deb9u1fixed
buster (security), buster, buster (lts)5.20.14-1+deb10u1fixed
bullseye (security), bullseye5.20.19-1+deb11u1fixed
bookworm5.21.4-1fixed
sid, trixie5.22.7-0.1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
cactisourcesarge0.8.6c-7sarge3DSA-1031-1
cactisource(unstable)0.8.6d-1medium
libphp-adodbsourcewoody1.51-1.2DSA-1029-1
libphp-adodbsourcesarge4.52-1sarge1DSA-1029-1
libphp-adodbsource(unstable)4.72-0.1medium349985
moodlesourcesarge1.4.4.dfsg.1-3sarge1DSA-1030-1
moodlesource(unstable)1.6.3-2medium

Notes

exact moodle fixed version not known, but at least <= 1.6.3-2

Search for package or bug name: Reporting problems