ModSecurity Quote Parsing Security Bypass Vulnerability

ModSecurity is prone to a security-bypass vulnerability because it fails to sufficiently sanitize user-supplied input.

Successful exploits can allow attackers to bypass filtering rules; this may aid in further attacks.

ModSecurity versions prior to 2.6.6 are vulnerable.


 

Privacy Statement
Copyright 2010, SecurityFocus