singapore Image Gallery contains a flaw that may allow a remote attacker to upload arbitrary files. The issue is triggered due to improper file name checks of the addImage() function in the 'admin.class.php' script. It is possible that the flaw may allow a remote attacker to include a NULL character in the file name and upload arbitrary files to the system resulting in a loss of integrity.

Upgrade to version 0.9.11 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

• Security Tracker: 1012567
• Bugtraq ID: 11990
• Related OSVDB ID: 12569 12571 12572 12573
• ISS X-Force ID: 18531
• CVE ID: 2004-1408 (see also: NVD)
• Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2004-12/0211.html
• Vendor URL: http://singapore.sourceforge.net/
• Vendor Specific News/Changelog Entry: http://sourceforge.net/project/showfiles.php?group_id=77687
• Other Advisory URL: http://www.security.org.sg/vuln/singapore0910.html

• Tan Chew Keong - vulnsecunia.com - Secunia Research