file-missing-nginx-bof-protection: Missing Nginx Buffer Overflow Protection

日期: 2025-08-01 | 影响软件: nginx | POC: 已公开

漏洞描述

Ensures that buffer overflow protection is properly configured in Nginx to prevent large request attacks.

PoC代码[已公开]

id: file-missing-nginx-bof-protection

info:
  name: Missing Nginx Buffer Overflow Protection
  author: pussycat0x
  severity: medium
  description: |
    Ensures that buffer overflow protection is properly configured in Nginx to prevent large request attacks.
  reference:
    - https://wiki.devsecopsguides.com/docs/checklists/nginx/
    - https://nginx.org/en/docs/http/ngx_http_proxy_module.html
  metadata:
    verified: true
  tags: nginx,file,audit,hardening

file:
  - extensions:
      - conf

    matchers-condition: and
    matchers:
      - type: word
        words:
          - "http"
          - "events"
        condition: and

      - type: word
        words:
          - "proxy_buffer_size"
          - "proxy_buffers"
          - "proxy_busy_buffers_size"
        condition: and
        negative: true
# digest: 4a0a00473045022036b0373d4799a54a494ead2953d156482fa9ae4fed41994f52af845fe83cc5e4022100d513a233c8599f369882cdfcce51bdf7e2810016cb237fe8e194753f4e2cef54:922c64590222798bb761d5b6d8e72950

来源: https://github.com/projectdiscovery/nuclei-templates/blob/main/./file/audit/nginx/file-missing-nginx-bof-protection.yaml

漏洞描述

PoC代码[已公开]

相关漏洞推荐