search cancel

Is Reporter vulnerable to (FTP)Nginx Remote Code Execution (RCE) Vulnerability (Zero Day)Nginx Arbitrary Code Exe

book

Article ID: 254345

calendar_today

Updated On:

Products

Reporter Reporter-S500

Issue/Introduction

You are receiving scan alert similar to below and want to know if the Reporter is vulnerable. 

Remote Management Service Accepting Unencrypted Credentials Detected (FTP)Nginx Remote Code Execution (RCE) Vulnerability (Zero Day)Nginx Arbitrary Code Exe

Threat

nginx [engine x] is an HTTP and reverse proxy server, a mail proxy server, and a generic TCP/UDP proxy server.

A security issue in nginx resolver was identified, which might allow an attacker to cause 1-byte memory overwrite by using a specially crafted DNS response

Affected Versions:
NGINX version from 0.6.18 to 1.20.0

QID Detection Logic (Unauthenticated):
The unauthenticated check tries to fetch the version from the version exposed in the Server: tag of a HTTP response.

Resolution

Product has been reviewed and determined not to be vulnerable.