PhotoPost Pro adm-photo.php Arbitrary Image Manipulation

2005-03-11T05:40:19
ID OSVDB:14681
Type osvdb
Reporter Igor Franchuk(sprog@online.ru)
Modified 2005-03-11T05:40:19

Description

Vulnerability Description

PhotoPost Pro contains a flaw that may allow a remote attacker to manipulate arbitrary images. The problem is that the 'adm-photo.php' script does not check for administrative privileges before allowing the manipulation of photos, resulting in a loss of integrity.

Solution Description

Upgrade to version 5.01 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

PhotoPost Pro contains a flaw that may allow a remote attacker to manipulate arbitrary images. The problem is that the 'adm-photo.php' script does not check for administrative privileges before allowing the manipulation of photos, resulting in a loss of integrity.

Manual Testing Notes

http://[victim]/photopost/adm-photo.php?ppaction=manipulate&pid=1&dowhat=rebuildthumb&dowhat=rotateccw

References:

Vendor URL: http://www.photopost.com/ Secunia Advisory ID:14576 Related OSVDB ID: 14679 Related OSVDB ID: 14680 Related OSVDB ID: 14682 Related OSVDB ID: 14683 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2005-03/0200.html ISS X-Force ID: 19677 CVE-2005-0776 Bugtraq ID: 12779