Gallery Crafted File Path Manipulation Arbitrary Code Execution

2006-02-07T02:48:00
ID OSVDB:22944
Type osvdb
Reporter Tom Saville(seregon@bughunter.net)
Modified 2006-02-07T02:48:00

Description

Vulnerability Description

Gallery contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when a user with write access to a server creates a crafted link and tricks an administrator to follow the link. This flaw may lead to a loss of integrity.

Solution Description

Upgrade to version 1.5.2-pl2 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

Gallery contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when a user with write access to a server creates a crafted link and tricks an administrator to follow the link. This flaw may lead to a loss of integrity.

References:

Vendor URL: http://gallery.sourceforge.net/ Vendor Specific News/Changelog Entry: http://sourceforge.net/project/shownotes.php?release_id=391488&group_id=7130 Vendor Specific News/Changelog Entry: http://gallery.menalto.com/gallery_1_5_2_pl2_security_release Secunia Advisory ID:18735 Related OSVDB ID: 22943 Other Advisory URL: http://www.digitalarmaments.com/2006140293402395.html CVE-2006-0587