Path Equivalence: 'filename.' (Trailing Dot)

Incomplete Variant

Structure: Simple

Description

The product accepts path input in the form of trailing dot ('filedir.') without appropriate validation, which can lead to ambiguous path resolution and allow an attacker to traverse the file system to unintended locations or access arbitrary files.

Common Consequences 1

Scope: Access Control

Impact: Bypass Protection Mechanism

Observed Examples 7

CVE-2000-1114Source code disclosure using trailing dot

CVE-2002-1986Source code disclosure using trailing dot

CVE-2004-2213Source code disclosure using trailing dot

CVE-2005-3293Source code disclosure using trailing dot

CVE-2004-0061Bypass directory access restrictions using trailing dot in URL

CVE-2000-1133Bypass directory access restrictions using trailing dot in URL

CVE-2001-1386Bypass check for ".lnk" extension using ".lnk."

Applicable Platforms

Languages:

Not Language-Specific : Undetermined

Modes of Introduction

Implementation

Functional Areas

File Processing

Affected Resources

File or Directory

Related Weaknesses

ChildOf:

Improper Resolution of Path Equivalence (CWE-41)

ChildOf:

Improper Neutralization of Trailing Special Elements (CWE-162)

Taxonomy Mapping

PLOVER
Software Fault Patterns