Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 286391

Summary: <www-servers/nginx-0.7.64: low risk webdav destination bug (CVE-2009-3898)
Product: Gentoo Security Reporter: Dawid Węgliński (RETIRED) <cla>
Component: VulnerabilitiesAssignee: Gentoo Security <security>
Status: RESOLVED DUPLICATE    
Severity: enhancement    
Priority: High    
Version: unspecified   
Hardware: All   
OS: Linux   
URL: http://archives.neohapsis.com/archives/fulldisclosure/2009-09/0379.html
Whiteboard:
Package list:
Runtime testing required: ---

Description Dawid Węgliński (RETIRED) gentoo-dev 2009-09-25 11:40:24 UTC 
Bug Title: nginx webdav copy/move method directory traversal 
Program: nginx 
Version: nginx/0.7.61 - other versions may also be affected

By using characters like "../" the attacker can traverse down the 
directory tree and place files 
outside the webroot. This is an insecure behaviour of the nginx webdav 
module and can be 
especially dangerous when nginx is used in a virtual hosting 
environment. nginx runs as the 
user nobody per default so normally this bug is not a big deal since 
an attacker may only 
be allowed to write files to /tmp/ or nobody owned directories.
Comment 1 Sean Amoss (RETIRED) gentoo-dev Security 2014-12-09 23:52:53 UTC 

*** This bug has been marked as a duplicate of bug 293788 ***