CGI security fixes

author: Andrey A. Chernov <ache@FreeBSD.org> 1999-11-17 14:24:02 +0000
committer: Andrey A. Chernov <ache@FreeBSD.org> 1999-11-17 14:24:02 +0000
commit: 44952828259cc8c15ce5a7a9240488f77d447d23 (patch)
tree: d71218560e1e94c9278647ee3bd4ca006aec3f4d /www/webglimpse/files/patch-as
parent: Upgrade to 1.7.3. (diff)
1 files changed, 14 insertions, 0 deletions
diff --git a/www/webglimpse/files/patch-as b/www/webglimpse/files/patch-as
new file mode 100644
index 000000000000..6bde035ac5ff
--- /dev/null
+++ b/www/webglimpse/files/patch-as
@@ -0,0 +1,14 @@
+--- cgi-bin/mfs.bak	Wed Oct 22 09:49:43 1997
++++ cgi-bin/mfs	Wed Nov 17 16:21:17 1999
+@@ -15,7 +15,11 @@
+ $file = $ENV{'QUERY_STRING'};
+ 
+ $indexdir =~ s/\'//g;
++$indexdir =~ s/\\/\\\\/g;
++$indexdir =~ s/\0//g;
+ $file =~ s/\'//g;
++$file =~ s/\\/\\\\/g;
++$file =~ s/\0//g;
+ 
+ if (!$indexdir) {
+ 	print "Content-type: text/html\n\n";
author	Andrey A. Chernov <ache@FreeBSD.org>	1999-11-17 14:24:02 +0000
committer	Andrey A. Chernov <ache@FreeBSD.org>	1999-11-17 14:24:02 +0000
commit	44952828259cc8c15ce5a7a9240488f77d447d23 (patch)
tree	d71218560e1e94c9278647ee3bd4ca006aec3f4d /www/webglimpse/files/patch-as
parent	Upgrade to 1.7.3. (diff)