CVE-2006-6246 Information

Description

Photo Organizer 2.32b and earlier does not properly check the ownership of certain objects which allows remote attackers to gain unauthorized access via vectors related to (1) camera del (2) camera edit (3) folder/album deletion (4) photo.move (5) content.indexer (6) folder.content and possibly other operations.

Reference

http://bugs.shaftnet.org/task/113 http://po.shaftnet.org/po_stable_changelog http://secunia.com/advisories/23176 http://www.securityfocus.com/bid/21351 http://www.vupen.com/english/advisories/2006/4766 https://exchange.xforce.ibmcloud.com/vulnerabilities/30577