ModSceurity 2.5.11 fixes an evasion vulnerability

Submitted by Ofer Shezaf on 9 November 2009 - 7:53am
Share/Save

Breach has release a new version of ModSecurity which fixes a vulnerability that may lead to an evasion. As stated in the release announcement sent to the mailing list by Brian Rectanus, by using non-standard (but accepted by some platforms) quoting, ModSecurity may be fooled into thinking some parameters are uploaded files.

The vulnerability was presented by  Stefan Esser at POC 2009 in Seol and not posted online yet.

Tags: 
ModSecurity
Solutions Accuracy

1 comment

by Anonymous on 9 November 2009 - 10:41pm

The slides are online:

http://www.suspekt.org/downloads/POC2009-ShockingNewsInPHPExploitation.pdf

-B

Post new comment

More information about text formats

Full HTML

  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.

Filtered HTML

  • Web page addresses and e-mail addresses turn into links automatically.
  • Allowed HTML tags: <a> <em> <strong> <cite> <blockquote> <code> <ul> <ol> <li> <dl> <dt> <dd>
  • Lines and paragraphs break automatically.

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.