• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Federico David Sacerdoti Ansel Insecure Default Permissions Vulnerability

Ansel is reported prone to an insecure default permissions vulnerability. It is reported that the application creates picture albums with insecure permissions. This can allow remote attackers to gain unauthorized access to Web readable directories.

Ansel versions 2.0 and prior are reported prone to this issue.