From: Secunia Security Advisories (sec-advsecunia.com)
Date: Tue Apr 08 2003 - 07:50:22 CDT

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

TITLE:
Coppermine Photo Gallery Image Extension Vulnerability

READ ONLINE:
http://www.secunia.com/advisories/8544/

CRITICAL:
Moderately critical

IMPACT:
Privilege escalation

WHERE:
From remote

SOFTWARE:
Coppermine Photo Gallery 1.x

DESCRIPTION:
A vulnerability in Coppermine Photo Gallery can be exploited by
malicious users to gain escalated privileges on a vulnerable system.

The vulnerability is caused by an error in the extension checking
routine, when users upload files to the gallery. A malicious user can
exploit the vulnerability by constructing a specially crafted script
file with the extension ".jpg.php" and upload it. The script file can
afterwards be requested to execute arbitrary commands on the system
with the webserver's privileges.

SOLUTION:
Apply patch:

Patch for version 1.0RC3:
http://chez.greg.free.fr/downloads/db_input_1.0RC3_patched.zip

Patch for version 1.0RC1:
http://chez.greg.free.fr/downloads/db_input_1.0RC1_patched.zip

REPORTED BY / CREDITS:
Berend-Jan Wever

----------------------------------------------------------------------

Secunia recommends that you verify all advisories you receive, by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

Contact details:
Web : http://www.secunia.com/
E-mail : supportsecunia.com
Tel : +44 (0) 20 7016 2693
Fax : +44 (0) 20 7637 0419

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories

----------------------------------------------------------------------

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]