CVE-2013-1862

描述

mod_rewrite.c in the mod_rewrite module in the Apache HTTP Server 2.2.x before 2.2.25 writes data to a log file without sanitizing non-printable characters, which might allow remote attackers to execute arbitrary commands via an HTTP request containing an escape sequence for a terminal emulator.

受影響套件(1)

• Debian/apache2from 0, < 2.4.1-1

參考連結(1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2013-1862