|
|
Info |
Last Modified |
| 7 months ago |
|
|
|
|
Description |
YaPIG contains a flaw that may allow a malicious user to view images in password-protected dirctories. The issue is due to the disclosure of paths in the HTML source, and a subsequent failure of access controls. It is possible that the flaw may allow users to bypass all password-based restrictions, resulting in a loss of confidentiality.
|
|
Classification |
Location:
Remote/Network Access Required
Attack Type:
Information Disclosure
Impact:
Loss of Confidentiality
Exploit:
Exploit Available
Disclosure:
OSVDB Verified
|
|
Solution |
Currently, there are no known upgrades or patches to correct this issue. It is possible to correct the flaw by implementing the following workaround(s) suggested by the vendor:
(For thumbnail views)
FIX: Detect if gallery has password and use a generic thumbnail.
(For list of images)
1) Assign GID_DIRS and PHID_FILENAME random values for each installation.
2) changing permissions with chmod() each time we access those files. More difficult because depends on server config and not valid for all OS, for example it won't work on win9X.
|
|
Products |
|
YaPiG
 |
0.9x |
0.8x |
0.7x |
|
|
|
|
Credit |
Unknown or Incomplete
|
|
BlogsProvided by Technorati
|
None found at this time
|
|
|
