|
Family: CGI abuses --> Category: infos
Coppermine Gallery Remote Command Execution Vulnerability Scan
Vulnerability Scan Summary Searches for the existence of db_input.php
Detailed Explanation for this Vulnerability Test
The remote host is running Coppermine Gallery - a set of PHP scripts
designed to handle galleries of pictures.
This product has a vulnerability which allows a possible hacker to upload
a rogue jpeg file which may contain PHP commands, and therefore may
obtain a shell on this host.
Solution : Upgrade to Coppermine 1.1 beta 2
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|