Bug 549559 (CVE-2009-4427)

Summary: CVE-2009-4427 phpldapadmin: local file inclusion vulnerability
Product: [Other] Security Response Reporter: Vincent Danen <vdanen>
Component: vulnerabilityAssignee: Red Hat Product Security <security-response-team>
Status: CLOSED ERRATA QA Contact:
Severity: medium Docs Contact:
Priority: medium    
Version: unspecifiedCC: dmitry, mgalgoci, russ+bugzilla-redhat
Target Milestone: ---Keywords: Security
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2009-12-31 12:07:03 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 549563    
Bug Blocks:    

Description Vincent Danen 2009-12-21 23:26:47 UTC 
A debian bug report [1] noted a phpldapadmin local file inclusion vulnerability.  Upstream has not addressed this yet from what I can see, and a public exploit/advisory is availble [2] as well as a Secunia advisory [3].

This would affect Fedora 11, 12, and rawhide as well as EPEL4 and EPEL5.  No CVE name has been assigned yet.

[1] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=561975
[2] http://www.exploit-db.com/exploits/10410
[3] http://secunia.com/advisories/37848/
Comment 2 Dmitry Butskoy 2009-12-22 13:21:04 UTC 
Reported upstream,
https://sourceforge.net/tracker/?func=detail&aid=2919337&group_id=61828&atid=498546
Comment 3 Dmitry Butskoy 2009-12-23 14:06:15 UTC 
F11 is affected only. Solution is upgrade to 1.2 

F12 and rawhide already have phpldapadmin-1.2.0.4, which is not affected.

EPEL4 and EPEL5 have versions before 1.1, which are not affected yet.
Comment 4 Fedora Update System 2009-12-23 14:31:11 UTC 
phpldapadmin-1.2.0.4-1.fc11 has been submitted as an update for Fedora 11.
http://admin.fedoraproject.org/updates/phpldapadmin-1.2.0.4-1.fc11
Comment 5 Fedora Update System 2009-12-24 20:35:00 UTC 
phpldapadmin-1.2.0.4-1.fc11 has been pushed to the Fedora 11 stable repository.  If problems still persist, please make note of it in this bug report.
Comment 6 Russell Odom 2010-01-20 11:46:31 UTC 
According to http://phpldapadmin.sourceforge.net/wiki/index.php/Main_Page...
> This vulnerability is confirmed in 1.1.0.7 and probably exists in previous releases
...so are we sure this doesn't need fixing in EPEL?
Comment 7 Dmitry Butskoy 2010-01-20 13:05:09 UTC 
As I've already mentioned in comment #3 ,

EPEL4 and EPEL5 have versions before 1.1, which are not affected yet. 

IOW, phpldapadmin 1.0.1 is not affected, as have no such a feature and an appropriate peace of code (which was added since the version 1.1 only)