Short Name |
HTTP:PHP:GALLERY:EMBED-AUTH |
---|---|
Severity |
Major |
Recommended |
No |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
Gallery Embedded USER AUTH Bypass |
Release Date |
2004/06/02 |
Update Number |
1213 |
Supported Platforms |
di-5.3+, idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
This signature detects attempts to exploit a known vulnerability in Gallery, a Web-based photo album application written in php. Attackers can bypass user authorization to gain administrative privileges.
Successful exploitation enables attackers to access to Gallery as an administrator and to perform any actions on any albums.