nginx Terminal Escape Sequence in Logs Command Injection Vulnerability

The 'nginx' program is prone to a command-injection vulnerability because it fails to adequately sanitize user-supplied input in log files.

Attackers can exploit this issue to execute arbitrary commands in a terminal.

This issue affects nginx 0.7.64; other versions may also be affected.


 

Privacy Statement
Copyright 2010, SecurityFocus