Nginx 1.1.17 – URI Processing SecURIty Bypass

• Exploit Database
• 146 阅读

• 作者： Ivan Fratric
  日期： 2013-11-19
• 类别：

  • remote
  平台：

  • multiple
• 来源：https://www.exploit-db.com/exploits/38846/
• 1 2 3 4 5 6 7 8 9 10 11 12

  source: https://www.securityfocus.com/bid/63814/info   nginx is prone to a remote security-bypass vulnerability.   An attacker can exploit this issue to bypass certain security restrictions and perform unauthorized actions.   nginx 0.8.41 through 1.5.6 are vulnerable.   The following example data is available:   /file \0.php