CVE-2011-4963

Name of the Vulnerable Software and Affected Versions nginx/Windows versions 1.2.x through 1.2.0 and versions 1.3.x through 1.3.0

Description The issue allows remote attackers to bypass intended access restrictions and access restricted files. This can be achieved via a trailing . (dot) or certain "$index allocation" sequences in a request.

Recommendations For versions 1.2.x through 1.2.0, update to version 1.2.1 or later. For versions 1.3.x through 1.3.0, update to version 1.3.1 or later.