Nginx 'access.log' Insecure File Permissions Vulnerability
BID:58105
Info
Nginx 'access.log' Insecure File Permissions Vulnerability
| Bugtraq ID: | 58105 |
| Class: | Design Error |
| CVE: |
CVE-2013-0337 |
| Remote: | No |
| Local: | Yes |
| Published: | Feb 21 2013 12:00AM |
| Updated: | Apr 13 2015 10:05PM |
| Credit: | Agostino Sarubbo |
| Vulnerable: |
Igor Sysoev nginx 0 Gentoo Linux |
| Not Vulnerable: | |
Discussion
Nginx 'access.log' Insecure File Permissions Vulnerability
Nginx is prone to an insecure file-permission vulnerability.
A local attacker can exploit this issue by gaining access to a world-readable log file and extracting sensitive information from it. Such information could aid in other attacks.
Nginx is prone to an insecure file-permission vulnerability.
A local attacker can exploit this issue by gaining access to a world-readable log file and extracting sensitive information from it. Such information could aid in other attacks.
Exploit / POC
Nginx 'access.log' Insecure File Permissions Vulnerability
Attackers can use readily available tools and standard commands to exploit this issue.
Attackers can use readily available tools and standard commands to exploit this issue.
Solution / Fix
Nginx 'access.log' Insecure File Permissions Vulnerability
Solution:
Currently, we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently, we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
References
Nginx 'access.log' Insecure File Permissions Vulnerability
References:
References:
- CVE request: nginx world-readable logdir (SECLISTS)
- nginx Homepage (Igor Sysoev)