Lucene search
Ubuntu.comUB:CVE-2011-4963HistoryJul 26, 2012 - 12:00 a.m.
CVE-2011-4963
2012-07-2600:00:00
ubuntu.com
ubuntu.com
17
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.002 Low
EPSS
Percentile
64.5%
nginx/Windows 1.3.x before 1.3.1 and 1.2.x before 1.2.1 allows remote
attackers to bypass intended access restrictions and access restricted
files via (1) a trailing . (dot) or (2) certain β$index_allocationβ
sequences in a request.
Notes
| Author | Note |
|---|---|
| tyhicks | Only affects nginx on Windows |
References
Related
openvas
openvas
nginx Security Bypass Vulnerability (Windows)
2013-02-01 00:00:00
nginx Security Bypass Vulnerability - Windows
2013-02-01 00:00:00
ptsecurity
ptsecurity
PT-2012-06: Security restrictions bypass in nginx for Windows
2012-07-06 00:00:00
prion
prion
Cross site request forgery (csrf)
2012-07-26 19:55:00
seebug
seebug
nginx "location" ειεΆθ΅ζΊζε‘ζΌζ΄
2012-10-16 00:00:00
nessus
nessus
nginx on Windows Directory Aliases Access Restriction Bypass
2012-08-02 00:00:00
nginx
nginx
Vulnerabilities with Windows directory aliases
2022-10-03 16:15:13
nvd
nvd
CVE-2011-4963
2012-07-26 19:55:00
cvelist
cvelist
CVE-2011-4963
2022-10-03 16:15:13
cve
cve
CVE-2011-4963
2022-10-03 16:15:13
debiancve
debiancve
CVE-2011-4963
2022-10-03 16:15:13
checkpoint_advisories
checkpoint_advisories
Nginx Location NTFS Extended Attributes Security Bypass (CVE-2011-4963)
2012-11-18 00:00:00
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.002 Low
EPSS
Percentile
64.5%
Related for UB:CVE-2011-4963