Project

General

Profile

Actions
Copy link

Bug #18934

closed

Default value of fileDenyPattern allows arbitrary code execution on Apache

Added by Ingmar Schlecht almost 16 years ago. Updated almost 14 years ago.

Status:
Closed
Priority:
Should have
Assignee:
-
Category:
-
Target version:
-
Start date:
2008-06-11
Due date:
% Done:

0%

Estimated time:
TYPO3 Version:
4.2
PHP Version:
4.3
Tags:
Complexity:
Is Regression:
Sprint Focus:

Description

See http://typo3.org/teams/security/security-bulletins/typo3-20080611-1/

(issue imported from #M8674)

Files

Download all files
security_filedenypattern_41branch_v4.diff (14.7 KB) security_filedenypattern_41branch_v4.diff Administrator Admin, 2008-06-11 08:23
security_filedenypattern_42branch_v4.diff (16.4 KB) security_filedenypattern_42branch_v4.diff Administrator Admin, 2008-06-11 08:23
Actions
Copy link
 #1

Updated by Chris topher almost 14 years ago

Committed by Ingmar on June 11th 2008 to 4.0, 4.1, 4.2 and trunk in Rev. 3793 - 3799.

Actions
Copy link

Also available in: Atom PDF