PT-2016-4669 · Nginx+1 · Nginx+1

Dawid Golunski

Published

2016-10-25

Updated

2021-12-14

CVE-2016-1247

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions nginx versions prior to 1.6.2-5+deb8u3 on Debian jessie nginx versions prior to 1.4.6-1ubuntu3.6 on Ubuntu 14.04 LTS nginx versions prior to 1.10.0-0ubuntu0.16.04.3 on Ubuntu 16.04 LTS nginx versions prior to 1.10.1-0ubuntu1.1 on Ubuntu 16.10 nginx versions prior to 1.10.2-r3 on Gentoo

Description The issue allows local users with access to the web server user account to gain root privileges via a symlink attack on the error log.

Recommendations For Debian jessie, update to version 1.6.2-5+deb8u3 or later. For Ubuntu 14.04 LTS, update to version 1.4.6-1ubuntu3.6 or later. For Ubuntu 16.04 LTS, update to version 1.10.0-0ubuntu0.16.04.3 or later. For Ubuntu 16.10, update to version 1.10.1-0ubuntu1.1 or later. For Gentoo, update to version 1.10.2-r3 or later.

Exploit

Fix

Link Following

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-59

Related Identifiers

CVE-2016-1247

DSA-3701-1

DSA-3701-2

OPENSUSE-SU-2024:11341-1

USN-3114-1

USN-3114-2

Affected Products

Ubuntu

Nginx

PT-2016-4669 · Nginx+1 · Nginx+1

CVE-2016-1247

Weakness Enumeration

Related Identifiers

Affected Products

References · 36