|Title:||AOLServer Terminal Escape Sequence in Logs Command Injection Vulnerability|
|Summary:||Determine if AOLServer version is <= 4.5.1|
AOLServer is prone to a command-injection vulnerability because it
fails to adequately sanitize user-supplied input in logfiles.
Attackers can exploit this issue to execute arbitrary commands in
AOLServer 4.5.1 is vulnerable
other versions may also be affected.
BugTraq ID: 37712|
Common Vulnerability Exposure (CVE) ID: CVE-2009-4494
Bugtraq: 20100110 Nginx, Varnish, Cherokee, thttpd, mini-httpd, WEBrick, Orion, AOLserver, Yaws and Boa log escape sequence injection (Google Search)
|Copyright||This script is Copyright (C) 2010 Greenbone Networks GmbH|
|This is only one of 40246 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.