Lucene search
MitreCVELIST:CVE-2006-1126HistoryMar 09, 2006 - 10:00 p.m.
CVE-2006-1126
2006-03-0922:00:00
mitre
www.cve.org
1
Gallery 2 up to 2.0.2 allows remote attackers to spoof their IP address via a modified X-Forwarded-For (X_FORWARDED_FOR) HTTP header, which is checked by Gallery before other more reliable sources of IP address information, such as REMOTE_ADDR.
References
archives.neohapsis.com/archives/bugtraq/2006-02/0621.html
gallery.menalto.com/gallery_2.0.3_released
secunia.com/advisories/19104
securitytracker.com/id?1015717
www.gulftech.org/?node=research&article_id=00106-03022006
www.vupen.com/english/advisories/2006/0813
exchange.xforce.ibmcloud.com/vulnerabilities/25120
Related
nvd
nvd
CVE-2006-1126
2006-03-09 22:02:00
prion
prion
Design/Logic Flaw
2006-03-09 22:02:00
cve
cve
CVE-2006-1126
2006-03-09 22:02:00
nessus
nessus
Gallery < 2.0.3 IP Spoofing
2006-03-06 00:00:00