Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-2295

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2006-2295
Last Modified 07 Mar 2011 09:35:54
Published 09 May 2006 10:14:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-2295

Summary

Directory traversal vulnerability in Dynamic Galerie 1.0 allows remote attackers to access arbitrary files via an absolute path in the pfad parameter to (1) index.php and (2) galerie.php.

Vulnerable Systems

Application

  • Timobraun Dynamic Galerie 1.0


References

VUPEN - ADV-2006-1699

BID - 17896

SECUNIA - 19995

MISC - http://d4igoro.blogspot.com/2006/05/dynamic-galerie-10-path-traversal-xss.html

XF - dynamicgalerie-multiple-path-disclosure(26322)


Last Updated: 27 May 2016 10:42:24