Lucene search
HistoryOct 03, 2022 - 4:15 p.m.
CVE-2011-4963
nginx
windows
cve-2011-4963
security vulnerability
remote attackers
access restrictions
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
6.6 Medium
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
64.5%
nginx/Windows 1.3.x before 1.3.1 and 1.2.x before 1.2.1 allows remote attackers to bypass intended access restrictions and access restricted files via (1) a trailing . (dot) or (2) certain β$index_allocationβ sequences in a request.
Affected configurations
Node
f5nginxRange0.7.52β1.2.1
ORf5nginxMatch1.3.0
microsoftwindowsMatch-
Related
ptsecurity
ptsecurity
PT-2012-06: Security restrictions bypass in nginx for Windows
2012-07-06 00:00:00
openvas
openvas
nginx Security Bypass Vulnerability (Windows)
2013-02-01 00:00:00
nginx Security Bypass Vulnerability - Windows
2013-02-01 00:00:00
nginx
nginx
Vulnerabilities with Windows directory aliases
2022-10-03 16:15:13
nessus
nessus
nginx on Windows Directory Aliases Access Restriction Bypass
2012-08-02 00:00:00
seebug
seebug
nginx "location" ειεΆθ΅ζΊζε‘ζΌζ΄
2012-10-16 00:00:00
ubuntucve
ubuntucve
CVE-2011-4963
2012-07-26 00:00:00
prion
prion
Cross site request forgery (csrf)
2012-07-26 19:55:00
cvelist
cvelist
CVE-2011-4963
2022-10-03 16:15:13
nvd
nvd
CVE-2011-4963
2012-07-26 19:55:00
debiancve
debiancve
CVE-2011-4963
2022-10-03 16:15:13
checkpoint_advisories
checkpoint_advisories
Nginx Location NTFS Extended Attributes Security Bypass (CVE-2011-4963)
2012-11-18 00:00:00
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
6.6 Medium
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
64.5%
Related for CVE-2011-4963