Difference between revisions of "Directory Restriction Error"

From OWASP
Jump to: navigation, search
(Related Countermeasures)
Line 16: Line 16:
  
 
[[Input Validation]]
 
[[Input Validation]]
 +
 
[[Access Control]]
 
[[Access Control]]
  
 
{{Template:Stub}}
 
{{Template:Stub}}

Revision as of 10:41, 9 June 2006

This is a Vulnerability. To view all vulnerabilities, please see the Vulnerability Category page.


Description

Improper use of the chroot() system call may allow attackers to access files that are outside the new root directory therefore breaks the intended access control policy.

Related Threats

Attackers try to access unauthorized files, such as password files or configuration files.

Related Attacks

Path Traversal Attacks

Related Countermeasures

Input Validation

Access Control

This article is a stub. You can help OWASP by expanding it or discussing it on its Talk page.