17 matches found
Mageia: Security Advisory (MGASA-2013-0349)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Update : nginx (openSUSE-SU-2013:1745-1)
The nginx webserver was fixed to avoid a restriction bypass when a space in not correctly escaped. CVE-2013-4547 On openSUSE 12.2, nginx was updated to version 1.4.4 stable - CVE-2013-4547 a character following an unescaped space in a request line was handled incorrectly bnc851295 - bugfix:...
openSUSE Security Update : nginx-1.0 (openSUSE-SU-2013:1791-1)
The nginx webserver was fixed to avoid a restriction bypass when a space in not correctly escaped. CVE-2013-4547 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2013-913. The text...
Fedora Update for nginx FEDORA-2013-21826
Check for the Version of nginx OpenVAS Vulnerability Test Fedora Update for nginx FEDORA-2013-21826 Authors: System Generated Check Copyright: Copyright C 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms...
Important: nginx
Issue Overview: nginx 0.8.41 through 1.4.3 and 1.5.x before 1.5.7 allows remote attackers to bypass intended restrictions via an unescaped space character in a URI. Affected Packages: nginx Issue Correction: Run yum update nginx or yum update --advisory ALAS-2013-249 to update your system. New...
nginx < 1.4.4 / 1.5.7 ngx_parse_http Security Bypass
According to the self-reported version in the Server response header, the installed version of nginx is greater than 0.8.41 but prior to 1.4.4 / 1.5.7. It is, therefore, affected by a security bypass vulnerability in 'ngxhttpparse.c' when a file with a space at the end of the URI is requested...
[SECURITY] [DSA 2802-1] nginx security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2802-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst November 21, 2013 http://www.debian.org/security/faq -...
Debian DSA-2802-1 : nginx - restriction bypass
Ivan Fratric of the Google Security Team discovered a bug in nginx, a web server, which might allow an attacker to bypass security restrictions by using a specially crafted request. The oldstable distribution squeeze is not affected by this problem. %NASLMINLEVEL 70300 C Tenable Network Security,...
Mandriva Linux Security Advisory : nginx (MDVSA-2013:281)
Updated nginx package fixes security vulnerability : Ivan Fratric of the Google Security Team discovered a bug in nginx, which might allow an attacker to bypass security restrictions in certain configurations by using a specially crafted request, or might have potential other impact CVE-2013-4547...
Request line parsing vulnerability
Request line parsing vulnerability Severity: medium CVE-2013-4547 Not vulnerable: 1.5.7+, 1.4.4+ Vulnerable: 0.8.41-1.5.6...
CVE-2013-4547
CVE-2013-4547 affects nginx versions 0.8.41–1.4.3 and 1.5.x prior to 1.5.7. Root cause: an unescaped space character in a URI can bypass intended restrictions, enabling remote bypass of access controls as described in the entry. Impact: restriction bypass is possible; exploitation and mitigation ...
Updated nginx packages fix CVE-2013-4547
Updated nginx package fixes security vulnerability: Ivan Fratric of the Google Security Team discovered a bug in nginx, which might allow an attacker to bypass security restrictions in certain configurations by using a specially crafted request, or might have potential other impact CVE-2013-4547...
MGASA-2013-0349 Updated nginx packages fix CVE-2013-4547
Updated nginx package fixes security vulnerability: Ivan Fratric of the Google Security Team discovered a bug in nginx, which might allow an attacker to bypass security restrictions in certain configurations by using a specially crafted request, or might have potential other impact CVE-2013-4547...
Security fix for the ALT Linux 9 package nginx version 1.4.4-alt1
Nov. 22, 2013 Denis Smirnov 1.4.4-alt1 - 1.4.4 ALT 29604 - CVE-2013-4547...
[SECURITY] [DSA 2802-1] nginx security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2802-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst November 21, 2013 http://www.debian.org/security/faq -...
nginx -- Request line parsing vulnerability
The nginx project reports: Ivan Fratric of the Google Security Team discovered a bug in nginx, which might allow an attacker to bypass security restrictions in certain configurations by using a specially crafted request, or might have potential other impact CVE-2013-4547...
CVE-2013-4547
creationtimestamp| type| source ---|---|--- 2013-11-19 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/38846 2021-08-25 13:22:18+00:00| seen| https://t.me/truesecator/2035...