nginx Terminal Escape Sequence in Logs Command Injection Vulnerability
|
Bugtraq ID:
|
37711
|
|
Class:
|
Input Validation Error
|
|
CVE:
|
CVE-2009-4487
|
|
Remote:
|
Yes
|
|
Local:
|
No
|
|
Published:
|
Jan 11 2010 12:00AM
|
|
Updated:
|
Jan 11 2010 12:00AM
|
|
Credit:
|
Giovanni 'evilaliv3' Pellerano, Alessandro 'jekil' Tanasi, and Francesco 'ascii' Ongaro
|
|
Vulnerable:
|
Igor Khasilev nginx 0.7.64
|
|
|
|
Not Vulnerable:
|
|
|
