openSUSE Security Update : nginx-1.0 (openSUSE-2011-48)

A flaw in the custom DNS resolver of nginx could lead to a heap based buffer overflow which could potentially allow attackers to execute arbitrary code or to cause a Denial of Service bnc731084, CVE-2011-4315. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package...

openSUSE Security Update : nginx-1.0 (openSUSE-SU-2012:0469-1)

specially crafted http responses from upstream server could leak already freed memory %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2012-209. The text description of this plugin is ...

openSUSE Security Update : nginx-1.0 (openSUSE-SU-2013:1791-1)

The nginx webserver was fixed to avoid a restriction bypass when a space in not correctly escaped. CVE-2013-4547 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2013-913. The text...

Discuz 1.5 storm WEB path vulnerability-vulnerability warning-the black bar safety net

Test environment: discuz X1. 5+nginx 1.0 漏洞 文件 source/function/functioncore.php that Code: $G'setting''domain''app''default' && $content = pregreplace"/a href="^"+"/e", "rewriteoutput'sitedefault', 0, '".$ G'setting''domain''app''default'.$ port.$ G'siteroot'."', '\\1'", $content; Use code:...