CVE-2019-11879

CVE-2019-11879

** DISPUTED ** The WEBrick gem 1.4.2 for Ruby allows directory traversal if the attacker once had local access to create a symlink to a location outside of the web root directory. NOTE: The vendor states that this is analogous to Options FollowSymlinks in the Apache HTTP Server, and therefore it is "not a problem."

Source: CVE-2019-11879

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다