Date: Sun, 8 Oct 2000 22:58:55 +0000 From: Tony Finch <dot@dotat.at> To: "Andrey A. Chernov" <ache@nagual.pp.ru> Cc: security@freebsd.org Subject: Re: A new problem in apache ? Message-ID: <20001008225855.E12691@hand.dotat.at> In-Reply-To: <20001001053035.A26403@nagual.pp.ru> References: <200010010102.VAA41966@giganda.komkon.org> <20001001053035.A26403@nagual.pp.ru>
next in thread | previous in thread | raw e-mail | index | archive | help
"Andrey A. Chernov" <ache@nagual.pp.ru> wrote: > >> Here are some example RewriteRule directives. The first is vulnerable, but the others are not >> >> RewriteRule /test/(.*) /usr/local/data/test-stuff/$1 > >Looks like famous ../../../ trick can be used. Yes, but you have to be reasonably cunning to get a ../../../.. into the path whilst avoiding the checks for it. I've posted more information about this problem to bugtraq. Tony. -- en oeccget g mtcaa f.a.n.finch v spdlkishrhtewe y dot@dotat.at eatp o v eiti i d. fanf@covalent.net To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20001008225855.E12691>