cve/CVE-2015-3200.md at b9f71be413f98288ba69ffc52e91a65fc146eb2b

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-07 03:02:30 +00:00

0xMarcio ba290685fe Update CVE sources 2024-06-09 00:33

2024-06-09 00:33:16 +00:00

Description

mod_auth in lighttpd before 1.4.36 allows remote attackers to inject arbitrary log entries via a basic HTTP authentication string without a colon character, as demonstrated by a string containing a NULL and new line character.

POC

Reference

http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html
http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html

Github

https://github.com/ARPSyndicate/cvemon
https://github.com/fir3storm/Vision2

867 B Raw Blame History

CVE-2015-3200

Description

POC

Reference

Github

867 B

Raw Blame History