CVE-2010-2263

Publication date 15 June 2010

Last updated 24 July 2024


Ubuntu priority

Negligible

Why this priority?

nginx 0.8 before 0.8.40 and 0.7 before 0.7.66, when running on Windows, allows remote attackers to obtain source code or unparsed content of arbitrary files under the web document root by appending ::$DATA to the URI.

Read the notes from the security team

Status

Package Ubuntu Release Status
nginx 10.04 LTS lucid
Not affected
9.10 karmic
Not affected
9.04 jaunty
Not affected
8.04 LTS hardy
Not affected
6.06 LTS dapper Not in release

Notes


kees

Windows-only