Info

Disclosure

Mar 25, 2006

Discovery

Unknown

Dates

Exploit

Mar 25, 2006

Solution

Unknown

Description

WEBalbum contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to multiple scripts not properly sanitizing user input supplied to the 'skin2' cookie. This may allow an attacker to read arbitrary local files or include local files which contain arbitrary commands which will be executed by the vulnerable scripts.

Classification

Location: Remote / Network Access
Attack Type: Input Manipulation
Impact: Loss of Integrity
Exploit: Exploit Public
Disclosure: OSVDB Verified
OSVDB: Web Related

Solution

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Products

WEBalbum

2.02pl

References

Exploit Database: 1608
Milw0rm: 1608
Bugtraq ID: 17228
Secunia Advisory ID: 19400
CVE ID: 2006-1480 (see also: NVD)
ISS X-Force ID: 25443
VUPEN Advisory: ADV-2006-1108
Vendor URL: http://www.web-album.org/

Credit

retrogod - rgodaustici.org - Personal Page

Direct URL: http://osvdb.org/24160