Lucene search
HistoryJul 26, 2012 - 7:55 p.m.
CVE-2011-4963
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.5
Confidence
Low
EPSS
0.003
Percentile
70.4%
nginx/Windows 1.3.x before 1.3.1 and 1.2.x before 1.2.1 allows remote attackers to bypass intended access restrictions and access restricted files via (1) a trailing . (dot) or (2) certain β$index_allocationβ sequences in a request.
Affected configurations
Node
f5nginxRange0.7.52β1.2.1
ORf5nginxMatch1.3.0
microsoftwindowsMatch-
Related
ptsecurity
ptsecurity
PT-2012-06: Security restrictions bypass in nginx for Windows
2012-07-06 00:00:00
openvas
openvas
nginx Security Bypass Vulnerability (Windows)
2013-02-01 00:00:00
nginx Security Bypass Vulnerability - Windows
2013-02-01 00:00:00
nessus
nessus
nginx on Windows Directory Aliases Access Restriction Bypass
2012-08-02 00:00:00
seebug
seebug
nginx "location" ειεΆθ΅ζΊζε‘ζΌζ΄
2012-10-16 00:00:00
ubuntucve
ubuntucve
CVE-2011-4963
2012-07-26 00:00:00
prion
prion
Cross site request forgery (csrf)
2012-07-26 19:55:00
nginx
nginx
Vulnerabilities with Windows directory aliases
2012-07-26 19:55:00
checkpoint_advisories
checkpoint_advisories
Nginx Location NTFS Extended Attributes Security Bypass (CVE-2011-4963)
2012-11-18 00:00:00
cvelist
cvelist
CVE-2011-4963
2012-07-26 19:00:00
debiancve
debiancve
CVE-2011-4963
2012-07-26 19:55:00
cve
cve
CVE-2011-4963
2012-07-26 19:55:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.5
Confidence
Low
EPSS
0.003
Percentile
70.4%
Related for NVD:CVE-2011-4963