Описание
mod_rewrite.c in the mod_rewrite module in the Apache HTTP Server 2.2.x before 2.2.25 writes data to a log file without sanitizing non-printable characters, which might allow remote attackers to execute arbitrary commands via an HTTP request containing an escape sequence for a terminal emulator.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 2.4.4-6ubuntu4 |
| lucid | released | 2.2.14-5ubuntu8.12 |
| precise | released | 2.2.22-1ubuntu1.4 |
| quantal | released | 2.2.22-6ubuntu2.3 |
| raring | released | 2.2.22-6ubuntu5.1 |
| upstream | needs-triage |
Показывать по
EPSS
5.1 Medium
CVSS2
Связанные уязвимости
mod_rewrite.c in the mod_rewrite module in the Apache HTTP Server 2.2.x before 2.2.25 writes data to a log file without sanitizing non-printable characters, which might allow remote attackers to execute arbitrary commands via an HTTP request containing an escape sequence for a terminal emulator.
mod_rewrite.c in the mod_rewrite module in the Apache HTTP Server 2.2.x before 2.2.25 writes data to a log file without sanitizing non-printable characters, which might allow remote attackers to execute arbitrary commands via an HTTP request containing an escape sequence for a terminal emulator.
mod_rewrite.c in the mod_rewrite module in the Apache HTTP Server 2.2. ...
mod_rewrite.c in the mod_rewrite module in the Apache HTTP Server 2.2.x before 2.2.25 writes data to a log file without sanitizing non-printable characters, which might allow remote attackers to execute arbitrary commands via an HTTP request containing an escape sequence for a terminal emulator.
EPSS
5.1 Medium
CVSS2