VDB
CVE-2009-4495
CVE-2009-4495
PUBLISHED
Yaws 1.85 writes data to a log file without sanitizing non-printable characters, which might allow remote attackers to modify a window's title, or possibly execute arbitrary commands or overwrite files, via an HTTP request containing an escape sequence for a terminal emulator.
EPSS 4.21% · 89.0th percentile
Risk Scores
EPSS Score
4.21%
89.0th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ubuntu:22.04:LTS | yaws | 2.1.0+dfsg-1, *, 2.1.1+dfsg-1 |
| Ubuntu:24.04:LTS | yaws | 2.1.1+dfsg-2, 0 |
| Ubuntu:16.04:LTS | yaws | 1.98-5, 1.99-2, 2.0.2-1 |
| Ubuntu:18.04:LTS | yaws | *, 0, 2.0.4+dfsg-2 |
| Ubuntu:25.10 | yaws | 2.2.0+dfsg-2, 0 |
| Ubuntu:20.04:LTS | yaws | 2.0.6+dfsg-1, 0, * |
Exploit Intelligence
- CIRCL confirmed: CVE-2009-4495 (circl-sighting)
- 20100110 Nginx, Varnish, Cherokee, thttpd, mini-httpd, WEBrick, Orion, AOLserver, Yaws and Boa log escape sequence injection (circl)
- http://www.securityfocus.com/bid/37716 (vulncheck-nvd)
- http://www.ush.it/team/ush/hack_httpd_escape/adv.txt (vulncheck-nvd)
Timeline
- Jan 11, 2010 PoC Published
- Jan 13, 2010 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
References
- https://ubuntu.com/security/CVE-2009-4495 third-party-advisory
- https://www.cve.org/CVERecord?id=CVE-2009-4495 third-party-advisory