CVE-2009-4488

2010-01-1320:30:00

Debian Security Bug Tracker

security-tracker.debian.org

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

7.6

Confidence

Low

EPSS

0.002

Percentile

60.6%

JSON

Varnish 2.0.6 writes data to a log file without sanitizing non-printable characters, which might allow remote attackers to modify a window’s title, or possibly execute arbitrary commands or overwrite files, via an HTTP request containing an escape sequence for a terminal emulator. NOTE: the vendor disputes the significance of this report, stating that "This is not a security problem in Varnish or any other piece of software which writes a logfile. The real problem is the mistaken belief that you can cat(1) a random logfile to your terminal safely.

OSVersionArchitecturePackageVersionFilename
Debian12allvarnish<= 7.1.1-1.1varnish_7.1.1-1.1_all.deb
Debian11allvarnish<= 6.5.1-1+deb11u3varnish_6.5.1-1+deb11u3_all.deb
Debian999allvarnish<= 7.5.0-3varnish_7.5.0-3_all.deb
Debian13allvarnish<= 7.5.0-3varnish_7.5.0-3_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	all	varnish	<= 7.1.1-1.1	varnish_7.1.1-1.1_all.deb
Debian	11	all	varnish	<= 6.5.1-1+deb11u3	varnish_6.5.1-1+deb11u3_all.deb
Debian	999	all	varnish	<= 7.5.0-3	varnish_7.5.0-3_all.deb
Debian	13	all	varnish	<= 7.5.0-3	varnish_7.5.0-3_all.deb