{"id":533,"date":"2023-09-07T00:34:40","date_gmt":"2023-09-07T00:34:40","guid":{"rendered":"https:\/\/faq2.areabe.com\/docs\/607098-%e3%80%8ccgi%e7%ad%89%e3%82%92%e5%88%a9%e7%94%a8%e3%81%99%e3%82%8bweb%e3%82%b5%e3%83%bc%e3%83%90%e3%81%ae%e8%84%86%e5%bc%b1%e6%80%a7cve-2016-5385-%e7%ad%89-%e3%81%ab%e9%96%a2%e3%81%99\/"},"modified":"2023-12-04T06:40:33","modified_gmt":"2023-12-04T06:40:33","password":"","slug":"607098-%e3%80%8ccgi%e7%ad%89%e3%82%92%e5%88%a9%e7%94%a8%e3%81%99%e3%82%8bweb%e3%82%b5%e3%83%bc%e3%83%90%e3%81%ae%e8%84%86%e5%bc%b1%e6%80%a7cve-2016-5385-%e7%ad%89-%e3%81%ab%e9%96%a2%e3%81%99","status":"publish","type":"docs","link":"https:\/\/faq.areabe.com\/?docs=607098-%e3%80%8ccgi%e7%ad%89%e3%82%92%e5%88%a9%e7%94%a8%e3%81%99%e3%82%8bweb%e3%82%b5%e3%83%bc%e3%83%90%e3%81%ae%e8%84%86%e5%bc%b1%e6%80%a7cve-2016-5385-%e7%ad%89-%e3%81%ab%e9%96%a2%e3%81%99","title":{"rendered":"607098 \u300cCGI\u7b49\u3092\u5229\u7528\u3059\u308bWeb\u30b5\u30fc\u30d0\u306e\u8106\u5f31\u6027(CVE-2016-5385 \u7b49) \u306b\u95a2\u3059\u308b\u6ce8\u610f\u559a\u8d77\u300d\u304c\u51fa\u3055\u308c\u3066\u3044\u307e\u3059\u304cSWANStor\u3067\u306f\u5f71\u97ff\u3057\u307e\u3059\u304b"},"content":{"rendered":"\n<p class=\"wp-block-paragraph\">\n2016\u5e747\u670819\u65e5\u306b<a href=\"http:\/\/www.jpcert.or.jp\/at\/2016\/at160031.html\" target=\"_blank\" rel=\"noopener\">\u300cCGI\u7b49\u3092\u5229\u7528\u3059\u308bWeb\u30b5\u30fc\u30d0\u306e\u8106\u5f31\u6027(CVE-2016-5385 \u7b49) \u306b\u95a2\u3059\u308b\u6ce8\u610f\u559a\u8d77\u300d<\/a>\u304c\u51fa\u3055\u308c\u3066\u3044\u307e\u3059\u3002\n<\/p>\n\n\n<p class=\"wp-block-paragraph\">\n\u3053\u308c\u306fCGI\u304c\u4ed6\u306e\u30b5\u30fc\u30d0\u3068\u901a\u4fe1\u3092\u3057\u3066\u30c7\u30fc\u30bf\u3092\u53d6\u5f97\u3059\u308b\u969b\u306bHTTP_PROXY\u74b0\u5883\u5909\u6570\u3092\u53c2\u7167\u3057\u305f\u4e0a\u3067PROXY\u30b5\u30fc\u30d0\u7d4c\u7531\u3067\u306e\u63a5\u7d9a\u3092\u3059\u308b\u3088\u3046\u306a\u5b9f\u88c5\u3092\u3057\u3066\u3044\u308b\u5834\u5408\u306b\u5f71\u97ff\u304c\u3042\u308b\u3082\u306e\u3067\u3001\u3053\u306e\u74b0\u5883\u5909\u6570\u5024\u3092\u5916\u304b\u3089\u6063\u610f\u7684\u306b\u8a2d\u5b9a\u5909\u66f4\u3067\u304d\u308b\u3068\u3044\u3046\u554f\u984c\u3067\u3059\u3002Apache\u3092\u4f7f\u3063\u305fWeb\u30b5\u30fc\u30d0\u3092\u542b\u3081\u6bd4\u8f03\u7684\u5e83\u7bc4\u306aWeb\u30b5\u30fc\u30d0\u306b\u5f71\u97ff\u304c\u3042\u308b\u3088\u3046\u3067\u3059\u3002\n<\/p>\n\n\n<p class=\"wp-block-paragraph\">\nSWANStor\u30b7\u30b9\u30c6\u30e0\u306b\u3064\u3044\u3066\u306f\u3001\u74b0\u5883\u5909\u6570\u3092\u8a2d\u5b9a\u3057\u305f\u308a\u305d\u308c\u3092\u53c2\u7167\u3057\u3066\u5916\u90e8\u901a\u4fe1\u3092\u884c\u3046\u3068\u3044\u3063\u305f\u5b9f\u88c5\u306f\u3042\u308a\u307e\u305b\u3093\u306e\u3067\u3001\u672c\u4ef6\u306b\u95a2\u3059\u308b\u8106\u5f31\u6027\u306f\u307e\u3063\u305f\u304f\u3042\u308a\u307e\u305b\u3093\u3002\n<\/p>\n\n\n<p class=\"wp-block-paragraph\">\n<br>\n<\/p>\n\n\n<p class=\"wp-block-paragraph\">\n\uff08\u4ee5\u4e0b\u306e\u8a18\u4e8b\u306fApache\u3068PHP\u306b\u3064\u3044\u3066\u5f0a\u793e\u3067\u8abf\u3079\u305f\u5185\u5bb9\u3092\u8a18\u8f09\u3057\u305f\u3082\u306e\u3067\u3059\u304c\u3001\u8106\u5f31\u6027\u5bfe\u7b56\u7b49\u306b\u3064\u3044\u3066\u4e07\u5168\u3092\u7d04\u675f\u3057\u305f\u3082\u306e\u3067\u306f\u3042\u308a\u307e\u305b\u3093\u3002\u8a18\u4e8b\u306e\u5185\u5bb9\u306b\u3064\u3044\u3066\u306f\u307f\u306a\u3055\u307e\u306e\u8cac\u4efb\u306b\u304a\u3044\u3066\u3054\u53c2\u8003\u306b\u3055\u308c\u3066\u304f\u3060\u3055\u3044\u3002\uff09\n<\/p>\n\n\n<p class=\"wp-block-paragraph\">\nSWANStor\u30b7\u30b9\u30c6\u30e0\u3068\u306f\u95a2\u4fc2\u3042\u308a\u307e\u305b\u3093\u304c\u3001PHP\u3092\u52d5\u4f5c\u3055\u305b\u3066\u3044\u308b\u30b5\u30a4\u30c8\u306b\u3064\u3044\u3066\u3053\u306e\u8106\u5f31\u6027\u306e\u5f71\u97ff\u304c\u3042\u308b\u304b\u3069\u3046\u304b\u306f\u6b21\u306e\u3088\u3046\u306b\u3057\u3066\u78ba\u8a8d\u3059\u308b\u3053\u3068\u304c\u3067\u304d\u307e\u3059\u3002\n<\/p>\n\n\n<p class=\"wp-block-paragraph\">\n\uff11\uff09Linux\u304c\u52d5\u4f5c\u3059\u308b\u30b7\u30b9\u30c6\u30e0\u3092\u7528\u610f\u3057\u3001curl\u30b3\u30de\u30f3\u30c9\u304c\u52d5\u4f5c\u3059\u308b\u3088\u3046\u306b\u3057\u307e\u3059\u3002\n<\/p>\n\n\n<p class=\"wp-block-paragraph\">\n\uff12\uff09\u691c\u8a3c\u3059\u308bPHP\u304c\u52d5\u4f5c\u3057\u3066\u3044\u308b\u30b5\u30a4\u30c8\u306b\u3064\u3044\u3066\u3001phpinfo()\u3067PHP\u306e\u8a2d\u5b9a\u60c5\u5831\u304c\u53d6\u5f97\u3067\u304d\u308b\u3088\u3046\u306b\u3057\u307e\u3059\u3002\u4f8b\u3048\u3070checkvalunarability.php\u3068\u3044\u3046\u30d5\u30a1\u30a4\u30eb\u3092\u7528\u610f\u3057\u307e\u3059\u3002\n<\/p>\n\n\n<p class=\"wp-block-paragraph\">\n\uff13\uff09curl\u30b3\u30de\u30f3\u30c9\u3067\u6b21\u306e\uff12\u3064\u306e\u30b3\u30de\u30f3\u30c9\u3092\u5b9f\u884c\u3057\u3001\u5f97\u3089\u308c\u308b\u5fdc\u7b54\u3092\u78ba\u8a8d\u3057\u307e\u3059\u3002\n<\/p>\n\n\n<p class=\"wp-block-paragraph\">\n\u2460\u3000curl -H http:\/\/ \u691c\u8a3c\u3059\u308b\u30db\u30b9\u30c8\/checkvalunarability.php -s | egrep PROXY<br>\n<\/p>\n\n<p style=\"background-color: rgb(255, 255, 255);\">\u2461\u3000curl -H &#8216;Proxy: 127.0.0.1:8080&#8217; http:\/\/ \u691c\u8a3c\u3059\u308b\u30db\u30b9\u30c8\/checkvalunarability.php -s | egrep PROXY\n<\/p>\n<!-- \/wp:post-content -->\n<!-- wp:paragraph -->\n<p>\n\u2461\u306e\u30b3\u30de\u30f3\u30c9\u3067\u306f\u2460\u306b\u306f\u7121\u304b\u3063\u305f\u6b21\u306e\u3088\u3046\u306a\u8868\u793a\u304c\u3055\u308c\u308b\u5834\u5408\u3001\u672c\u4ef6\u306e\u8106\u5f31\u6027\u304c\u5b58\u5728\u3057\u307e\u3059\u3002\n<\/p>\n<!-- \/wp:paragraph -->\n<!-- wp:paragraph -->\n<p>\n_SERVER[&#8220;HTTP_<strong>PROXY<\/strong>&#8220;]127.0.0.1:8080\n<\/p>\n<!-- \/wp:paragraph -->\n<!-- wp:paragraph -->\n<p>\n<br>\n<\/p>\n<!-- \/wp:paragraph -->\n<!-- wp:paragraph -->\n<p>\n\u672c\u4ef6\u306b\u306fApache\u30b5\u30fc\u30d0\u306e\u5834\u5408\u3067mod_headers\u3092\u4f7f\u3063\u3066\u3044\u308b\u5834\u5408\u3001\u4f8b\u3048\u3070conf\/httpd.conf\u306e\u6700\u5f8c\u306e\u884c\u306b\u6b21\u306e\u4e00\u884c\u3092\u8ffd\u52a0\u3057\u3066httpd\u3092\u518d\u8d77\u52d5\u3059\u308b\u3053\u3068\u3067\u5bfe\u51e6\u304c\u53ef\u80fd\u3067\u3059\u3002\n<\/p>\n<!-- \/wp:paragraph -->\n<!-- wp:paragraph -->\n<p>\nRequestHeader unset Proxy<br>\n<\/p>\n<!-- \/wp:paragraph -->\n<!-- wp:paragraph -->\n<p>\n<br>\n<\/p>\n<!-- \/wp:paragraph -->\n<!-- wp:paragraph -->\n<p>\n<br>\n<\/p>\n<!-- \/wp:paragraph -->\n<!-- wp:paragraph -->\n<p>\n<br>\n<\/p>\n<!-- \/wp:paragraph -->\n<!-- wp:paragraph -->\n<p>\n<br>\n<\/p>\n<!-- \/wp:paragraph -->\n<!-- wp:paragraph -->\n<p>\n<br>\n<\/p>\n<!-- \/wp:paragraph -->\n<!-- wp:paragraph -->\n<p>\n<br>\n<\/p>\n<!-- \/wp:paragraph -->\n<!-- wp:paragraph -->\n<p>\n<br>\n<\/p>\n<!-- \/wp:paragraph -->\n\n\n","protected":false},"excerpt":{"rendered":"<p>2016\u5e747\u670819\u65e5\u306b\u300cCGI\u7b49\u3092\u5229\u7528\u3059\u308bWeb\u30b5\u30fc\u30d0\u306e\u8106\u5f31\u6027(CVE-2016-5385 \u7b49) \u306b\u95a2\u3059\u308b\u6ce8\u610f\u559a\u8d77\u300d\u304c\u51fa\u3055\u308c\u3066\u3044\u307e\u3059\u3002 \u3053\u308c\u306fCGI\u304c\u4ed6\u306e\u30b5\u30fc\u30d0\u3068\u901a\u4fe1\u3092\u3057\u3066\u30c7\u30fc\u30bf\u3092\u53d6\u5f97\u3059\u308b\u969b\u306bHTTP_PROXY\u74b0\u5883\u5909\u6570 [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"closed","template":"","meta":{"_crdt_document":"","footnotes":""},"doc_category":[4,11],"doc_tag":[],"class_list":["post-533","docs","type-docs","status-publish","hentry","doc_category-swanstor","doc_category-swanstor-security"],"year_month":"2026-05","word_count":55,"total_views":0,"reactions":{"happy":0,"normal":0,"sad":0},"author_info":{"name":"admin","author_nicename":"areabeblog","author_url":"https:\/\/faq.areabe.com\/?author=1"},"doc_category_info":[{"term_name":"SWANStor\u306b\u95a2\u3059\u308b","term_url":"https:\/\/faq.areabe.com\/?doc_category=swanstor"},{"term_name":"SWANStor\u306e\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u306b\u95a2\u3059\u308b","term_url":"https:\/\/faq.areabe.com\/?doc_category=swanstor-security"}],"doc_tag_info":[],"_links":{"self":[{"href":"https:\/\/faq.areabe.com\/index.php?rest_route=\/wp\/v2\/docs\/533","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/faq.areabe.com\/index.php?rest_route=\/wp\/v2\/docs"}],"about":[{"href":"https:\/\/faq.areabe.com\/index.php?rest_route=\/wp\/v2\/types\/docs"}],"author":[{"embeddable":true,"href":"https:\/\/faq.areabe.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/faq.areabe.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=533"}],"version-history":[{"count":1,"href":"https:\/\/faq.areabe.com\/index.php?rest_route=\/wp\/v2\/docs\/533\/revisions"}],"predecessor-version":[{"id":792,"href":"https:\/\/faq.areabe.com\/index.php?rest_route=\/wp\/v2\/docs\/533\/revisions\/792"}],"wp:attachment":[{"href":"https:\/\/faq.areabe.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=533"}],"wp:term":[{"taxonomy":"doc_category","embeddable":true,"href":"https:\/\/faq.areabe.com\/index.php?rest_route=%2Fwp%2Fv2%2Fdoc_category&post=533"},{"taxonomy":"doc_tag","embeddable":true,"href":"https:\/\/faq.areabe.com\/index.php?rest_route=%2Fwp%2Fv2%2Fdoc_tag&post=533"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}