SonicALERT
Search

Sonicwall Signatures

 

Go to All Categories list.


  Apache httpd mod_rewrite Remote Command Execution

Category: WEB-ATTACKS      

mod_rewrite.c in the mod_rewrite module in the Apache HTTP Server 2.2.x before 2.2.25 writes data to a log file without sanitizing non-printable characters, which might allow remote attackers to execute arbitrary commands via an HTTP request containing an escape sequence for a terminal emulator.

References
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1862


Relevant Information