nginx/Windows 1.3.x before 1.3.1 and 1.2.x before 1.2.1 allows remote attackers to bypass intended access restrictions and access restricted files via (1) a trailing . (dot) or (2) certain "$index_allocation" sequences in a request.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: redhat
Published: 2012-07-26T19:00:00Z
Updated: 2024-09-16T19:56:18.339Z
Reserved: 2011-12-23T00:00:00Z
Link: CVE-2011-4963
Vulnrichment
No data.
NVD
Status : Modified
Published: 2012-07-26T19:55:00.980
Modified: 2024-11-21T01:33:22.643
Link: CVE-2011-4963
Redhat
No data.