World-readable permissions in phpMyAdmin 2.6.2 SQL install script allow password exposure

World-readable permissions in phpMyAdmin 2.6.2 SQL install script allow password exposure

CVE-2005-1392 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

The SQL install script in phpMyAdmin 2.6.2 is created with world-readable permissions, which allows local users to obtain the initial database password by reading the script.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.