Published: 11/04/2003 Updated: 10/10/2017

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 755

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Gallery photo album package prior to 1.3.1 allows local and possibly remote malicious users to execute arbitrary code via a modified GALLERY_BASEDIR variable that points to a directory or URL that contains a Trojan horse init.php script.

Vulnerable Product	Search on Vulmon	Subscribe to Product
gallery project gallery

A problem was found in gallery (a web-based photo album toolkit): it was possible to pass in the GALLERY_BASEDIR variable remotely This made it possible to execute commands under the uid of web-server This has been fixed in version 125-7 of the Debian package and upstream version 131 ...

source: wwwsecurityfocuscom/bid/5375/info Gallery is prone to an issue which may allow remote attackers to include arbitrary files located on remote servers This issue is present in several PHP script files provided with Gallery An attacker may exploit this by supplying a path to a file on a remote host as a value for the 'GALLERY_BASED ...

NVD-CWE-Other http://archives.neohapsis.com/archives/bugtraq/2002-07/0471.html http://www.debian.org/security/2002/dsa-138 http://gallery.menalto.com/modules.php?op=modload&name=News&file=article&sid=50&mode=thread&order=0&thold=0 http://www.securityfocus.com/bid/5375 https://exchange.xforce.ibmcloud.com/vulnerabilities/9737 https://nvd.nist.gov https://www.debian.org/security/./dsa-138 https://www.exploit-db.com/exploits/21676/

CVE-2002-1412

Vulnerability Summary

Vendor Advisories

Exploits

References

Vulmon Search

About

Products

Connect