Add a rudimentary version check for the nginx package for the nginxed-root.sh exploit.
This exploit frequently shows up on modern systems, with any version of nginx installed, due to lack of a package version check.
The bug was disclosed ~3 years ago. Checking for <1.10.3 seemed like the easiest and best way to eliminate false positives without causing false negatives. All versions from 1.10.3 onward should be patched.
Add a rudimentary version check for the
nginx
package for thenginxed-root.sh
exploit.This exploit frequently shows up on modern systems, with any version of nginx installed, due to lack of a package version check.
The bug was disclosed ~3 years ago. Checking for
<1.10.3
seemed like the easiest and best way to eliminate false positives without causing false negatives. All versions from1.10.3
onward should be patched.