FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

mathopd -- directory traversal vulnerability

Affected packages
mathopd < 1.5p7

Details

VuXML ID 6e7ad1d7-4e27-11e1-8e12-90e6ba8a36a2
Discovery 2012-02-02
Entry 2012-02-03

Michiel Boland reports:

The software has a vulnerability that could lead to directory traversal if the '*' construct for mass virtual hosting is used.

References

Message 4F2AFEF2.5040708@boland.org
URL http://www.mathopd.org/security.html