CVE-2009-4494 in AOLserver信息

摘要

由 VulDB • 2026-07-07

AOLserver 4.5.1将数据写入日志文件时未对不可打印字符进行清理,这可能允许远程攻击者通过包含终端模拟器转义序列的HTTP请求来修改窗口标题,或可能执行任意命令或覆盖文件。

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

来源

Do you need the next level of professionalism?

Upgrade your account now!