Description
nginx 0.8.36 allows remote attackers to cause a denial of service (crash) via certain encoded directory traversal sequences that trigger memory corruption, as demonstrated using the "%c0.%c0." sequence.
Remediation
References
Related Vulnerabilities
WordPress Plugin Welcart e-Commerce Multiple Vulnerabilities (1.4.17)
ownCloud Improper Privilege Management Vulnerability (CVE-2020-36251)
OpenSSL Other Vulnerability (CVE-2014-3510)
Zope Web Application Server Other Vulnerability (CVE-2002-0688)
Chamilo Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-23127)