Lucene search
K

5 matches found

Tenable Nessus
Tenable Nessus
added 2010/07/01 12:0 a.m.47 views

Fedora 12 : boa-0.94.14-0.15.rc21.fc12 (2010-7640)

This update fixes CVE-2009-4496 where HTTP request logs were written without sanitizing non-printable characters. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it...

5CVSS8.3AI score0.12078EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2010/07/01 12:0 a.m.42 views

Fedora 11 : boa-0.94.14-0.15.rc21.fc11 (2010-7645)

This update fixes CVE-2009-4496 where HTTP request logs were written without sanitizing non-printable characters. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it...

5CVSS8.3AI score0.12078EPSS
Exploits2References3
OpenVAS
OpenVAS
added 2010/05/17 12:0 a.m.22 views

Fedora Update for boa FEDORA-2010-7640

The remote host is missing an update for the SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

5CVSS9.5AI score0.12078EPSS
Exploits2References2
CVE
CVE
added 2010/01/13 8:0 p.m.436 views

CVE-2009-4496

CVE-2009-4496 affects the Boa web server (Boa 0.94.14 rc21 in the Fedora/NASL/OpenVAS references) where HTTP logs are written without sanitizing non-printable characters. The provided connected document notes that this could allow remote attackers to exploit escape sequences in a request to manip...

5CVSS9.7AI score0.12078EPSS
Exploits2References8Affected Software1
OpenVAS
OpenVAS
added 2010/01/13 12:0 a.m.104 views

Boa Webserver Terminal Escape Sequence in Logs Command Injection Vulnerability

Boa Webserver is prone to a command-injection vulnerability because it fails to adequately sanitize user-supplied input in logfiles. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

5CVSS9.3AI score0.12078EPSS
Exploits2References2
Rows per page
Query Builder