|Title:||Gallery Script Execution|
The remote host is running the Gallery web-based photo album.
There is a flaw in the remote version of this software which may
allow an attacker to execute arbitrary commands on the remote host.
To exploit this flaw, an attacker would require the privileges to
upload files to a remote photo album.
Solution : Upgrade to Gallery 1.4.4-pl2 or newer
Risk factor : High
BugTraq ID: 10968|
Common Vulnerability Exposure (CVE) ID: CVE-2004-1466
XForce ISS Database: gallery-savephotos-file-upload(17021)
|Copyright||This script is Copyright (C) 2003 Tenable Network Security|
|This is only one of 93608 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.