Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 286391 - <www-servers/nginx-0.7.64: low risk webdav destination bug (CVE-2009-3898)
Summary: <www-servers/nginx-0.7.64: low risk webdav destination bug (CVE-2009-3898)
Status: RESOLVED DUPLICATE of bug 293788
Alias: None
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: High enhancement (vote)
Assignee: Gentoo Security
Depends on:
Reported: 2009-09-25 11:40 UTC by Dawid Węgliński (RETIRED)
Modified: 2014-12-09 23:52 UTC (History)
0 users

See Also:
Package list:
Runtime testing required: ---


Note You need to log in before you can comment on or make changes to this bug.
Description Dawid Węgliński (RETIRED) gentoo-dev 2009-09-25 11:40:24 UTC
Bug Title: nginx webdav copy/move method directory traversal 
Program: nginx 
Version: nginx/0.7.61 - other versions may also be affected

By using characters like "../" the attacker can traverse down the 
directory tree and place files 
outside the webroot. This is an insecure behaviour of the nginx webdav 
module and can be 
especially dangerous when nginx is used in a virtual hosting 
environment. nginx runs as the 
user nobody per default so normally this bug is not a big deal since 
an attacker may only 
be allowed to write files to /tmp/ or nobody owned directories.
Comment 1 Sean Amoss (RETIRED) gentoo-dev Security 2014-12-09 23:52:53 UTC

*** This bug has been marked as a duplicate of bug 293788 ***