Lucene search
RootSSV:60439HistoryOct 16, 2012 - 12:00 a.m.
nginx "location" 受限制资源服务漏洞
2012-10-1600:00:00
Root
www.seebug.org
77
0.002 Low
EPSS
Percentile
64.5%
CVE ID: CVE-2011-4963
nginx是一款使用非常广泛的高性能Web服务器。
nginx允许远程攻击者通过请求内的“.”或某些“$index_allocation”序列,绕过目标访问限制或访问受限文件。
0
Nginx 1.2.x
厂商补丁:
Nginx
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:
Related
openvas
openvas
nginx Security Bypass Vulnerability (Windows)
2013-02-01 00:00:00
nginx Security Bypass Vulnerability - Windows
2013-02-01 00:00:00
ptsecurity
ptsecurity
PT-2012-06: Security restrictions bypass in nginx for Windows
2012-07-06 00:00:00
prion
prion
Cross site request forgery (csrf)
2012-07-26 19:55:00
ubuntucve
ubuntucve
CVE-2011-4963
2012-07-26 00:00:00
nessus
nessus
nginx on Windows Directory Aliases Access Restriction Bypass
2012-08-02 00:00:00
nginx
nginx
Vulnerabilities with Windows directory aliases
2022-10-03 16:15:13
checkpoint_advisories
checkpoint_advisories
Nginx Location NTFS Extended Attributes Security Bypass (CVE-2011-4963)
2012-11-18 00:00:00
nvd
nvd
CVE-2011-4963
2012-07-26 19:55:00
debiancve
debiancve
CVE-2011-4963
2022-10-03 16:15:13
cve
cve
CVE-2011-4963
2022-10-03 16:15:13
cvelist
cvelist
CVE-2011-4963
2022-10-03 16:15:13