Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2009-4490

Опубликовано: 13 янв. 2010
Источник: nvd
CVSS2: 5
EPSS Низкий

Описание

mini_httpd 1.19 writes data to a log file without sanitizing non-printable characters, which might allow remote attackers to modify a window's title, or possibly execute arbitrary commands or overwrite files, via an HTTP request containing an escape sequence for a terminal emulator.

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:a:acme:mini_httpd:1.19:*:*:*:*:*:*:*

EPSS

Процентиль: 88%
0.03901
Низкий

5 Medium

CVSS2

Дефекты

CWE-20

Связанные уязвимости

ubuntu логотип

CVE-2009-4490

ubuntu
почти 16 лет назад

mini_httpd 1.19 writes data to a log file without sanitizing non-printable characters, which might allow remote attackers to modify a window's title, or possibly execute arbitrary commands or overwrite files, via an HTTP request containing an escape sequence for a terminal emulator.

debian логотип

CVE-2009-4490

debian
почти 16 лет назад

mini_httpd 1.19 writes data to a log file without sanitizing non-print ...

github логотип

GHSA-cqc7-8rq3-fvw9

github
больше 3 лет назад

mini_httpd 1.19 writes data to a log file without sanitizing non-printable characters, which might allow remote attackers to modify a window's title, or possibly execute arbitrary commands or overwrite files, via an HTTP request containing an escape sequence for a terminal emulator.

EPSS

Процентиль: 88%
0.03901
Низкий

5 Medium

CVSS2

Дефекты

CWE-20