Nginx WebDAV Multiple Directory Traversal Vulnerabilities Network Vulnerability

Summary

The 'nginx' program is prone to multiple directory-traversal vulnerabilities because the software fails to sufficiently sanitize user-supplied input. An attacker can exploit these issues using directory-traversal strings ('../') to overwrite arbitrary files outside the root directory. These issues affect nginx 0.7.61 and 0.7.62 other versions may also be affected.

References

http://nginx.net/
http://www.securityfocus.com/archive/1/506662
http://www.securityfocus.com/bid/36490

Updated on 2015-03-25

Severity

Classification

CVE CVE-2009-3898

CVSS	Base Score: 4.9 AV:N/AC:M/Au:S/C:P/I:P/A:N

Related Vulnerabilities

Ecava IntegraXor Multiple Cross-Site Scripting Vulnerabilities (Windows)
IBM WebSphere Application Multiple Vulnerabilities Jul-11
Ecava IntegraXor Directory Traversal Vulnerability
IBM WebSphere Application Server WS-Security XML Encryption Weakness Vulnerability
CommuniGate Pro Web Mail URI Parsing HTML Injection Vulnerability

nginx WebDAV Multiple Directory Traversal Vulnerabilities

Take action and discover your vulnerabilities