mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-28 01:04:30 +00:00
807 B
807 B
CVE-2013-2178
Description
The apache-auth.conf, apache-nohome.conf, apache-noscript.conf, and apache-overflows.conf files in Fail2ban before 0.8.10 do not properly validate log messages, which allows remote attackers to block arbitrary IP addresses via certain messages in a request.
POC
Reference
- http://www.openwall.com/lists/oss-security/2013/06/13/7
- http://www.openwall.com/lists/oss-security/2013/06/13/7
Github
No PoCs found on GitHub currently.