CVE-2009-4496
published 2010-01-13CVE-2009-4496: Boa 0.94.14rc21 writes data to a log file without sanitizing non-printable characters, which might allow remote attackers to modify a window's title, or…
PriorityP433medium5CVSS 2.0
AVNACLAuNCPINAN
EXPLOIT
EPSS
12.08%
95.6th percentile
Boa 0.94.14rc21 writes data to a log file without sanitizing non-printable characters, which might allow remote attackers to modify a window's title, or possibly execute arbitrary commands or overwrite files, via an HTTP request containing an escape sequence for a terminal emulator.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| boa | boa | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Bugzilla
CVE-2009-4496 boa: sanitize nonprintable characters in error logs [fedora-all]
bugzilla·2010-04-16·CVSS 5.0
CVE-2009-4496 [MEDIUM] CVE-2009-4496 boa: sanitize nonprintable characters in error logs [fedora-all]
CVE-2009-4496 boa: sanitize nonprintable characters in error logs [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected Fedora
versions.
For comments that are specific to the vulnerability please use bugs filed
against "Security Response" product referenced in the "Blocks" field.
Forr more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please include the bug IDs of the
respective parent bugs filed against the "Security Response" product.
Please mention CVE ids in the RPM changelog when available.
Bodhi update submission link:
https://admin.fedoraproject.org/updates/new/?type_=security&bugs=583162
Please note: this issue affects mul
Bugzilla
CVE-2009-4496 boa: sanitize nonprintable characters in error logs
bugzilla·2010-04-16·CVSS 5.0
CVE-2009-4496 [MEDIUM] CVE-2009-4496 boa: sanitize nonprintable characters in error logs
CVE-2009-4496 boa: sanitize nonprintable characters in error logs
A vulnerability was reported against multiple web servers [1] where the log files contained unescaped sequences that could potentially affect certain terminals when viewing the log files.
While we don't necessarily see this as a problem in the web servers themself, being able to correct them to have sanitized contents in the log files would be a good thing. The Debian bug report [2] to that end has a patch attached [3] that would correct the issue in boa. Since it does not look like upstream will resolve this issue, this bug is being opened so that boa in Fedora can be patched.
[1] http://www.ush.it/team/ush/hack_httpd_escape/adv.txt
[2] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=578035
[3] http://bugs.debian.org/cg
Greynoiseio
Malicious Tag Roundup (October 2021)
blogs_greynoiseio·CVSS 10.0
[CRITICAL] Malicious Tag Roundup (October 2021)
CVE Disclosure Early Warning Get an early warning when traffic spikes indicate a high likelihood of new disclosures
Compromised Asset Detection Find out immediately if an asset communicates with a malicious IP address
Vulnerability Prioritization Get real-time insight into active exploitation trends to better understand risk and severity
SOC Efficiency Filter out noisy, low priority and false-positive alerts from mass internet scanners
Incident Investigation Add context to incidents to speed the determinations of scope and timelines
Threat Hunting Quickly identify anomalous behavior and enrich your threat hunting campaigns
Why GreyNoise
CVE Disclosure Early Warning Get an early warning when traffic spikes indicate a high likelihood of new disclosures
Compromised Asset Detection Fin
http://lists.fedoraproject.org/pipermail/package-announce/2010-May/041271.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2010-May/041274.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2010-May/041285.htmlhttp://secunia.com/advisories/39775http://www.securityfocus.com/archive/1/508830/100/0/threadedhttp://www.securityfocus.com/bid/37718http://www.ush.it/team/ush/hack_httpd_escape/adv.txthttp://www.vupen.com/english/advisories/2010/1133http://lists.fedoraproject.org/pipermail/package-announce/2010-May/041271.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2010-May/041274.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2010-May/041285.htmlhttp://secunia.com/advisories/39775http://www.securityfocus.com/archive/1/508830/100/0/threadedhttp://www.securityfocus.com/bid/37718http://www.ush.it/team/ush/hack_httpd_escape/adv.txthttp://www.vupen.com/english/advisories/2010/1133
2010-01-13
Published