nginx <= 1.1.17 URI Processing Security Bypass Vulnerability

2013-11-19T00:00:00
ID EDB-ID:38846
Type exploitdb
Reporter Ivan Fratric
Modified 2013-11-19T00:00:00

Description

nginx 1.1.17 URI Processing Security Bypass Vulnerability. CVE-2013-4547. Remote exploits for multiple platform

                                        
                                            source: http://www.securityfocus.com/bid/63814/info

nginx is prone to a remote security-bypass vulnerability.

An attacker can exploit this issue to bypass certain security restrictions and perform unauthorized actions.

nginx 0.8.41 through 1.5.6 are vulnerable. 

The following example data is available:

/file \0.php