Vulnerability Scanning Solutions, LLC.
Our Process
What We Scan For
Sample Report
Client List
Contact Us
What We Scan For
Family: Debian Local Security Checks --> Category: infos

[DSA642] DSA-642-1 gallery Vulnerability Scan

Vulnerability Scan Summary
DSA-642-1 gallery

Detailed Explanation for this Vulnerability Test

Several vulnerabilities have been discovered in gallery, a web-based
photo album written in PHP4. The Common Vulnerabilities and Exposures
project identifies the following vulnerabilities:
Jim Paris discovered a cross site scripting vulnerability which
allows code to be inserted by using specially formed URLs.
The upstream developers of gallery have fixed several cases of
possible variable injection that could trick gallery to unintended
actions, e.g. leaking database passwords.
For the stable distribution (woody) these problems have been fixed in
version 1.2.5-8woody3.
For the unstable distribution (sid) these problems have been fixed in
version 1.4.4-pl4-1.
We recommend that you upgrade your gallery package.

Solution :
Threat Level: High

Click HERE for more information and discussions on this network vulnerability scan.


P.O. Box 827051

Pembroke Pines, FL 33082-7051

Vulnerability Scanning Solutions, LLC.