FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

gallery2 -- file disclosure vulnerability

Affected packages
gallery2 < 2.0.1

Details

VuXML ID 47bdabcf-3cf9-11da-baa2-0004614cc33d
Discovery 2005-10-12
Entry 2005-10-15
Modified 2005-11-08

Michael Dipper wrote:

A vulnerability has been discovered in gallery, which allows remote users unauthorized access to files on the webserver.

A remote user accessing gallery over the web may use specially crafted HTTP parameters to access arbitrary files located on the webserver. All files readable by the webserver process are subject to disclosure. The vulnerability is *not* restricted to the webserver's document root but extends to the whole server file space.

The vulnerabilty may be used by any anonymous user, there is no login to the application required.

References

Bugtraq ID 15108
CVE Name CVE-2005-3251
URL http://dipper.info/security/20051012/