nginx Security Bypass Vulnerability (Windows)

This host is running nginx and is prone to security bypass vulnerability. OpenVAS Vulnerability Test $Id: gbnginxsecbypassvulnwin.nasl 7548 2017-10-24 12:06:02Z cfischer $ nginx Security Bypass Vulnerability Windows Authors: Rachana Shetty Copyright: Copyright c 2013 Greenbone Networks GmbH,...

Nginx Location NTFS Extended Attributes Security Bypass (CVE-2011-4963)

A design weakness vulnerability has been reported in nginx HTTP Server. The vulnerability is due to an error when handling specially crafted HTTP requests. A remote attacker could exploit this vulnerability by sending a specially crafted HTTP request to the target. Successful exploitation can lea...

CVE-2011-4963

CVE-2011-4963 affects nginx on Windows: vulnerable in 1.3.x before 1.3.1 and 1.2.x before 1.2.1, where specially crafted requests can bypass access restrictions and reach restricted files using a trailing dot or certain "$index_allocation" sequences. Red Hat/OpenVAS/NVD entries corroborate the Wi...

Vulnerabilities with Windows directory aliases

Vulnerabilities with Windows directory aliases Severity: medium CVE-2011-4963 Not vulnerable: 1.3.1+, 1.2.1+ Vulnerable: nginx/Windows 0.7.52-1.3.0...