the apache mod_rewrite module command to perform a detailed analysis attached to POC(CVE-2 0 1 3-1 8 6 2)-vulnerability warning-the black bar safety net

The vulnerability by the security treasure inside security researcher analysis. The analysis is as follows: Recently see a lot of security media are in the description”Apache log file vulnerability could execute arbitrary code”, As security researchers look into”execute arbitrary code”, of course...

The Apache log file vulnerability may execute arbitrary code-a vulnerability warning-the black bar safety net

Recently foreign Safety researchers in the Apache server found a vulnerability, the vulnerability is the use of modules/mappers/modrewrite. c file in the Rewritelogfunction incorrect handling of certain escape sequences that lead to a malicious attacker to send a specially crafted HTTP request ca...

Apache HTTP Server mod_rewrite Log File Manipulation Vulnerability

A vulnerability in the dorewritelog function of Apache HTTP Server could allow an unauthenticated, remote attacker to gain access to sensitive information. The vulnerability is due to improper handling of certain escape sequences by the affected software. An unauthenticated, remote attacker could...

Scientific Linux Security Update : tomcat6 on SL6.x (noarch) (20130528)

A flaw was found in the way the tomcat6 init script handled the tomcat6-initd.log log file. A malicious web application deployed on Tomcat could use this flaw to perform a symbolic link attack to change the ownership of an arbitrary system file to that of the tomcat user, allowing them to escalat...

Scientific Linux Security Update : tomcat5 on SL5.x i386/x86_64 (20130528)

A flaw was found in the way the tomcat5 init script handled the catalina.out log file. A malicious web application deployed on Tomcat could use this flaw to perform a symbolic link attack to change the ownership of an arbitrary system file to that of the tomcat user, allowing them to escalate the...

Important: Red Hat Security Advisory: tomcat6 security update

Updated tomcat6 packages that fix two security issues are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...

CVE-2013-2006

OpenStack Identity Keystone Grizzly 2013.1.1, when DEBUG mode logging is enabled, logs the 1 admintoken and 2 LDAP password in plaintext, which allows local users to obtain sensitive by reading the log file...

Design/Logic Flaw

OpenStack Identity Keystone Grizzly 2013.1.1, when DEBUG mode logging is enabled, logs the 1 admintoken and 2 LDAP password in plaintext, which allows local users to obtain sensitive by reading the log file...

CVE-2013-2006

OpenStack Identity Keystone Grizzly 2013.1.1, when DEBUG mode logging is enabled, logs the 1 admintoken and 2 LDAP password in plaintext, which allows local users to obtain sensitive by reading the log file...

Apache HTTP Server日志内终端转义序列命令注入漏洞

BUGTRAQ ID: 59826 CVECAN ID: CVE-2013-1862 Apache HTTP Server是开源HTTP服务器。 Apache HTTP Server modrewrite向日志文件写入数据时，没有过滤不能打印的字符。如果 modrewrite 使用了指令RewriteLog，远程攻击者可利用此漏洞向日志文件写入终端转义序列。如果HTTP请求包含终端模拟器的转义序列，此漏洞也可造成任意命令执行。 0 Apache Group HTTP Server 2.2.x 厂商补丁： Apache Group ------------...

CVE-2013-3505

The Nagios-App component in GroundWork Monitor Enterprise 6.7.0 allows remote authenticated users to bypass intended access restrictions via a direct request for a 1 log file or 2 configuration file...

CVE-2013-3505

The CVE-2013-3505 issue affects the Nagios-App component in GroundWork Monitor Enterprise 6.7.0. Affected behavior: remote authenticated users can bypass intended access restrictions by directly requesting either a log file or a configuration file. Root cause stated in sources: improper access co...

D-Link DSL-320B - Multiple Vulnerabilities

Device: DSL-320B Firmware Version: EUDSL-320B v1.23 date: 28.12.2010 Vendor URL: http://www.dlink.com/de/de/home-solutions/connect/modems-and-gateways/dsl-320b-adsl-2-ethernet-modem ============ Vulnerability Overview: ============ Access to the Config file without authentication = full...

[SAMHAIN v3.0.11 & BELTANE v2.4.6] Host-based intrusion detection system (HIDS)

The Samhain host-based intrusion detection system HIDS provides file integrity checking and log file monitoring/analysis , as well as rootkit detection, port monitoring, detection of rogue SUID executables, and hidden processes. Samhain been designed to monitor multiple hosts with potentially...

WellinTech KingView KingMess Log File Parsing Buffer Overflow (CVE-2012-4711)

A buffer overflow vulnerability has been reported in KingView's KingMess. The vulnerability is due to an error while parsing log files. An attacker can exploit this vulnerability by enticing a user to open a specially crafted log file...

CVE-2013-0128

The Contact Customer Support feature in the TigerText Free Private Texting app before 3.1.402 for iOS sends a log-file e-mail message with unencrypted credentials, which allows remote attackers to obtain sensitive information by sniffing the network or leveraging access to an e-mail endpoint...

sanlock world writable /var/log/sanlock.log

The setuplogging function in log.h in SANLock uses world-writable permissions for /var/log/sanlock.log, which allows local users to overwrite the file content or bypass intended disk-quota restrictions via standard filesystem write operations...

KingView Log File Parsing Buffer Overflow Vulnerability

This Metasploit module exploits a vulnerability found in KingView "KingView Log File Parsing Buffer Overflow", 'Description' = %q This module exploits a vulnerability found in KingView = 6.55. It exists in the KingMess.exe application when handling log files, due to the insecure usage of sprintf...

WellinTech KingView KingMess.exe Log File Parsing Overflow

Added: 03/22/2013 CVE: CVE-2012-4711 BID: 57909 OSVDB: 89690 Background WellinTech is a China-based company which produces KingView, a Web-based SCADA application for Windows-based control, monitoring, and data collection that is used internationally. Problem WellinTech KingView KingMess.exe is...

WellinTech KingView KingMess.exe Log File Parsing Overflow

Added: 03/22/2013 CVE: CVE-2012-4711 BID: 57909 OSVDB: 89690 Background WellinTech is a China-based company which produces KingView, a Web-based SCADA application for Windows-based control, monitoring, and data collection that is used internationally. Problem WellinTech KingView KingMess.exe is...