<?xml version="1.0" encoding="utf-8"?> <!DOCTYPE glsa SYSTEM "http://www.gentoo.org/dtd/glsa.dtd"> <glsa id="200602-02"> <title>ADOdb: PostgresSQL command injection</title> <synopsis> ADOdb is vulnerable to SQL injections if used in conjunction with a PostgreSQL database. </synopsis> <product type="ebuild">ADOdb</product> <announced>2006-02-06</announced> <revised count="01">2006-02-06</revised> <bug>120215</bug> <access>remote</access> <affected> <package name="dev-php/adodb" auto="yes" arch="*"> <unaffected range="ge">4.71</unaffected> <vulnerable range="lt">4.71</vulnerable> </package> </affected> <background> <p> ADOdb is an abstraction library for PHP creating a common API for a wide range of database backends. </p> </background> <description> <p> Andy Staudacher discovered that ADOdb does not properly sanitize all parameters. </p> </description> <impact type="normal"> <p> By sending specifically crafted requests to an application that uses ADOdb and a PostgreSQL backend, an attacker might exploit the flaw to execute arbitrary SQL queries on the host. </p> </impact> <workaround> <p> There is no known workaround at this time. </p> </workaround> <resolution> <p> All ADOdb users should upgrade to the latest version: </p> <code> # emerge --sync # emerge --ask --oneshot --verbose ">=dev-php/adodb-4.71"</code> </resolution> <references> <uri link="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0410">CVE-2006-0410</uri> </references> <metadata tag="bugReady" timestamp="2006-02-04T17:34:56Z"> DerCorny </metadata> <metadata tag="submitter" timestamp="2006-02-06T08:23:05Z"> frilled </metadata> </glsa>