vuto
Khodi yoyimbira string_interpret_escape() imagawa chotchinga chokhetsa potengera kukula kwake, ndipo cholozera chowonekera chimathera kudera lomwe lili kunja kwa malire a buffer. Chifukwa chake, poyesa kukonza chingwe cholowera, vuto limakhala powerenga deta kuchokera kudera lomwe lili kunja kwa malire a buffer, ndipo kuyesa kulemba chingwe chosathawika kungayambitse kulemba kupyola malire a buffer.
Mukusintha kosasintha, chiwopsezocho chingagwiritsidwe ntchito potumiza deta yopangidwa mwapadera ku SNI pokhazikitsa kulumikizana kotetezeka ku seva. Vutoli litha kugwiritsidwanso ntchito mwakusintha makonda a peerdn mumasinthidwe okonzedwa kuti atsimikizire satifiketi ya kasitomala kapena potumiza satifiketi. Kuwukira kudzera pa SNI ndi peerdn ndizotheka kuyambira pakumasulidwa
Chitsanzo chogwiritsidwa ntchito chakonzedwa kuti chiwukidwe kudzera pa SNI, ikuyenda pa i386 ndi amd64 zomangamanga pa Linux machitidwe ndi Glibc. Kugwiritsira ntchito kumagwiritsa ntchito deta pamwamba pa gawo la mulu, zomwe zimapangitsa kuti zisinthe kukumbukira komwe dzina la fayilo la chipika limasungidwa. Dzina lafayilo lasinthidwa ndi "/../../../../../../../../etc/passwd". Kenaka, kusinthika ndi adiresi ya wotumiza kumalembedwa, yomwe imasungidwa koyamba mu chipika, chomwe chimakulolani kuti muwonjezere wogwiritsa ntchito watsopano ku dongosolo.
Zosintha zamaphukusi zokhala ndi zovuta zomwe zimatulutsidwa ndi magawo
Monga njira yothanirana ndi chiopsezo, mutha kuletsa chithandizo cha TLS kapena kuwonjezera
Gawo la ACL "acl_smtp_mail":
kukana chikhalidwe = ${if eq{\\}{${substr{-1}{1}{$tls_in_sni}}}}
kukana chikhalidwe = ${if eq{\\}{${substr{-1}{1}{$tls_in_peerdn}}}}
Source: opennet.ru