Lucene search
RootSSV:60648HistoryFeb 28, 2013 - 12:00 a.m.
Nginx 'access.log'不安全文件权限漏洞
2013-02-2800:00:00
Root
www.seebug.org
637
0.002 Low
EPSS
Percentile
57.0%
BUGTRAQ ID: 58105
CVE(CAN) ID: CVE-2013-0337
nginx是一款使用非常广泛的高性能Web服务器。
在Gentoo上,/var/log/nginx全局可访问,目录内的日志文件也是全局可读,这可允许未授权用户读取日志文件。
0
Igor Sysoev nginx
厂商补丁:
Igor Sysoev
目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本:
Related
debiancve
debiancve
CVE-2013-0337
2013-10-27 00:55:00
nessus
nessus
Fedora 17 : nginx-1.0.15-9.fc17 (2013-2955)
2013-03-05 00:00:00
nginx <= 1.3.13 Insecure Log Permissions
2019-03-05 00:00:00
fedora
fedora
[SECURITY] Fedora 17 Update: nginx-1.0.15-9.fc17
2013-03-04 22:43:19
openvas
openvas
Fedora Update for nginx FEDORA-2013-2955
2013-03-05 00:00:00
Fedora Update for nginx FEDORA-2013-2955
2013-03-05 00:00:00
nginx <= 1.21.1 Information Disclosure Vulnerability
2021-07-01 00:00:00
cve
cve
CVE-2013-0337
2013-10-27 00:55:00
prion
prion
Default configuration
2013-10-27 00:55:00
ubuntucve
ubuntucve
CVE-2016-1247
2016-10-25 00:00:00
CVE-2013-0337
2013-10-27 00:00:00
gentoo
gentoo
nginx: Multiple vulnerabilities
2013-10-06 00:00:00