| VID |
21280 |
| Severity |
30 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
CGI |
| Detailed Description |
The Gallery software has a cross-site scripting vulnerability in the search.php script file.
Bharat Mediratta Gallery is a Web-based software product that lets you manage photos on any Web site that offers PHP support. Gallery versions 1.1 to 1.3.4 could allow an attacker to construct a malicious link to the search.php script that contains hostile HTML and script code, which would be executed in the victim's Web browser within the security context of the hosting site, once the malicious link is clicked. An attacker could exploit this vulnerability to steal the cookie-based authentication credentials from the legitimate users of the vulnerable system.
* References:
http://www.securityfocus.com/archive/1/archive/1/348514
http://www.securityfocus.com/archive/1/archive/1/330676
* Platforms Affected:
Bharat Mediratta Gallery 1.1 to 1.3.4
Linux Any version |
| Recommendation |
Upgrade to the latest version of Gallery (1.3.4-pl1 or later), available from the SourceForge Web site, Project: Gallery at http://sourceforge.net/projects/gallery
For Debian/GNU Linux 3.0 (woody):
Upgrade to the latest version of Gallery (1.2.5-8woody1 or later), as listed in Debian Security Advisory DSA-355-1 at http://www.debian.org/security/2003/dsa-355
For Gentoo Linux:
Upgrade to the latest version of Gallery (1.3.4_p1 or later), as listed in Gentoo Linux Security Announcement 200309-06 at http://www.linuxsecurity.com/advisories/gentoo_advisory-3595.html
For other distributions:
Contact your vendor for upgrade or patch information. |
| Related URL |
CVE-2003-0614 (CVE) |
| Related URL |
8288 (SecurityFocus) |
| Related URL |
12748 (ISS) |
|
