Info

Disclosure

Nov 15, 2003

Discovery

Unknown

Dates

Exploit

Nov 15, 2003

Solution

Unknown

Description

YaPIG contains a flaw that may allow a malicious user to view images in password-protected dirctories. The issue is due to the disclosure of paths in the HTML source, and a subsequent failure of access controls. It is possible that the flaw may allow users to bypass all password-based restrictions, resulting in a loss of confidentiality.

Classification

Location: Remote/Network Access Required
Attack Type: Information Disclosure
Impact: Loss of Confidentiality
Exploit: Exploit Available
Disclosure: OSVDB Verified

Solution

Currently, there are no known upgrades or patches to correct this issue. It is possible to correct the flaw by implementing the following workaround(s) suggested by the vendor: (For thumbnail views) FIX: Detect if gallery has password and use a generic thumbnail. (For list of images) 1) Assign GID_DIRS and PHID_FILENAME random values for each installation. 2) changing permissions with chmod() each time we access those files. More difficult because depends on server config and not valid for all OS, for example it won't work on win9X.

Products

NaTaSaB	YaPiG	0.9x
		0.8x
		0.7x

References

Vendor Specific News/Changelog Entry: http://sourceforge.net/tracker/index.php?func=detail&aid=842990&group_id=93674&at ......
http://sourceforge.net/tracker/index.php?func=detail&aid=843736&group_id=93674&at ......
Vendor URL: http://yapig.sourceforge.net/

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/36218

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

NaTaSaB

YaPiG

References

Credit