Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-4021

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2005-4021
Last Modified 07 Mar 2011 09:27:33
Published 05 Dec 2005 06:03:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-4021

Summary

The installer for Gallery 2.0 before 2.0.2 stores the install log under the web document root with insufficient access control, which allows remote attackers to obtain sensitive information.

Vulnerable Systems

Application

  • Gallery Project Gallery 2.0

  • Gallery Project Gallery 2.0 Alpha1

  • Gallery Project Gallery 2.0 Alpha2

  • Gallery Project Gallery 2.0 Alpha3

  • Gallery Project Gallery 2.0 Alpha4

  • Gallery Project Gallery 2.0 Beta1

  • Gallery Project Gallery 2.0 Beta2

  • Gallery Project Gallery 2.0 Beta3

  • Gallery Project Gallery 2.0 Rc1

  • Gallery Project Gallery 2.0 Rc2

  • Gallery Project Gallery 2.0.1


References

BUGTRAQ - 20051130 Gallery 2.x Security Advisory

VUPEN - ADV-2005-2681

BID - 15614


Last Updated: 27 May 2016 10:41:08