This script is Copyright (C) 2008-2017 Tenable Network Security, Inc.
The remote Gentoo host is missing one or more security-related
The remote host is affected by the vulnerability described in GLSA-200811-02
(Gallery: Multiple vulnerabilities)
Multiple vulnerabilities have been discovered in Gallery 1 and 2:
Digital Security Research Group reported a directory traversal
vulnerability in contrib/phpBB2/modules.php in Gallery 1, when
register_globals is enabled (CVE-2008-3600).
Hanno Boeck reported that Gallery 1 and 2 did not set the secure flag
for the session cookie in an HTTPS session (CVE-2008-3662).
Alex Ustinov reported that Gallery 1 and 2 does not properly handle ZIP
archives containing symbolic links (CVE-2008-4129).
The vendor reported a Cross-Site Scripting vulnerability in Gallery 2
Remote attackers could send specially crafted requests to a server
running Gallery, allowing for the execution of arbitrary code when
register_globals is enabled, or read arbitrary files via directory
traversals otherwise. Attackers could also entice users to visit
crafted links allowing for theft of login credentials.
There is no known workaround at this time.
See also :
All Gallery 2 users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose '>=www-apps/gallery-2.2.6'
All Gallery 1 users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose '>=www-apps/gallery-1.5.9'
Risk factor :
Medium / CVSS Base Score : 6.8
CVSS Temporal Score : 5.6
Public Exploit Available : true
Family: Gentoo Local Security Checks
Nessus Plugin ID: 34733 (gentoo_GLSA-200811-02.nasl)
Bugtraq ID: 31231
Get Nessus Professional to scan unlimited IPs, run compliance checks & moreBuy Nessus Professional Now