|
Mantis - apache2
|
|||||
| Viewing Issue Advanced Details | |||||
|
|
|||||
| ID: | Category: | Severity: | Reproducibility: | Date Submitted: | Last Update: |
| 5142 | upgrade | minor | N/A | 2014-01-20 13:00 | 2014-02-22 11:38 |
|
|
|||||
| Reporter: | burger99 | Platform: | |||
| Assigned To: | dam | OS: | |||
| Priority: | normal | OS Version: | |||
| Status: | closed | Product Version: | |||
| Product Build: | Resolution: | fixed | |||
| Projection: | none | ||||
| ETA: | none | Fixed in Version: | |||
|
|
|||||
| Summary: | 0005142: Security issues | ||||
| Description: |
mod_rewrite.c in the mod_rewrite module in the Apache HTTP Server 2.2.x before 2.2.25 writes data to a log file without sanitizing non-printable characters, which might allow remote attackers to execute arbitrary commands via an HTTP request containing an escape sequence for a terminal emulator. Newest version available is 2.2.26 |
||||
| Steps To Reproduce: | |||||
| Additional Information: | |||||
| Relationships | |||||
| Attached Files: | |||||
|
|
|||||
| Issue History | |||||
| Date Modified | Username | Field | Change | ||
| 2014-01-20 13:00 | burger99 | New Issue | |||
| 2014-02-03 13:18 | dam | Status | new => assigned | ||
| 2014-02-03 13:18 | dam | Assigned To | => dam | ||
| 2014-02-03 17:06 | dam | Note Added: 0010697 | |||
| 2014-02-03 17:06 | dam | Status | assigned => feedback | ||
| 2014-02-22 11:38 | dam | Note Added: 0010730 | |||
| 2014-02-22 11:38 | dam | Status | feedback => closed | ||
| 2014-02-22 11:38 | dam | Resolution | open => fixed | ||
| Notes | |||||
|
|
|||||
|
|
||||
|
|
|||||
|
|
||||