httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Florian Weimer <fwei...@bfk.de>
Subject Re: CVE-2003-1418 - still affects apache 2 current
Date Fri, 02 Sep 2011 07:39:47 GMT
* Reindl Harald:

> mtime -> well, is directly in the header -> Last-Modified
> size -> well, directly in the header -> Content-Length
> inode -> well, where is there any security implication?

I guess you could use it to form an NFS handle, and use that to bypass
intended access restrictions.  But that's the fault of NFS, and systems
which do not use cryptographic NFS handles probably use non-random or
32-bit inodes, which are open to guessing anyway.

-- 
Florian Weimer                <fweimer@bfk.de>
BFK edv-consulting GmbH       http://www.bfk.de/
Kriegsstra├če 100              tel: +49-721-96201-1
D-76133 Karlsruhe             fax: +49-721-96201-99

Mime
View raw message