What was the original intention by the author of this bug? Is adding 0.0.0.0/0 as allowed address fullfilling a genuine use case? Or was a 'malicious' input?
If the former case, validation aimed at preventing the input might not be desirable, and we need to delve into this further to come up with a suitable solution.
What was the original intention by the author of this bug? Is adding 0.0.0.0/0 as allowed address fullfilling a genuine use case? Or was a 'malicious' input?
If the former case, validation aimed at preventing the input might not be desirable, and we need to delve into this further to come up with a suitable solution.