CVE-2013-1862
UnknownEPSS 24.89%
Last modified
CVE-2013-1862 is a vulnerability of currently unknown severity. mod_rewrite.c in the mod_rewrite module in the Apache HTTP Server 2.2.x before 2.2.25 writes data to a log file without sanitizing non-printable characters, which might allow remote attackers to execute arbitrary commands via an HTTP request containing an escape sequence for a terminal emulator.. EPSS estimates a 24.89% chance of exploitation in the next 30 days.
Description
mod_rewrite.c in the mod_rewrite module in the Apache HTTP Server 2.2.x before 2.2.25 writes data to a log file without sanitizing non-printable characters, which might allow remote attackers to execute arbitrary commands via an HTTP request containing an escape sequence for a terminal emulator.
Metrics
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Apache | Http Server | >= 2.0.0, < 2.0.65 |
| Apache | Http Server | >= 2.2.0, < 2.2.25 |
| Redhat | Jboss Enterprise Application Platform | 6.0.0 |
| Redhat | Jboss Enterprise Application Platform | 6.4.0 |
| Oracle | Http Server | 10.1.3.5.0 |
| Oracle | Http Server | 11.1.1.7.0 |
| Oracle | Http Server | 12.1.2.0 |
| Oracle | Http Server | 12.1.3.0 |
| Redhat | Enterprise Linux Desktop | 5.0 |
| Redhat | Enterprise Linux Desktop | 6.0 |
| Redhat | Enterprise Linux Eus | 5.9 |
| Redhat | Enterprise Linux Eus | 6.4 |
| Redhat | Enterprise Linux Server | 5.0 |
| Redhat | Enterprise Linux Server | 6.0 |
| Redhat | Enterprise Linux Server Aus | 5.9 |
| Redhat | Enterprise Linux Server Aus | 6.4 |
| Redhat | Enterprise Linux Workstation | 5.0 |
| Redhat | Enterprise Linux Workstation | 6.0 |
| Canonical | Ubuntu Linux | 10.04 |
| Canonical | Ubuntu Linux | 12.04 |
| Canonical | Ubuntu Linux | 12.10 |
| Canonical | Ubuntu Linux | 13.04 |
| Opensuse | Opensuse | 11.4 |
| Opensuse | Opensuse | 12.2 |
| Opensuse | Opensuse | 12.3 |
References
- http://lists.opensuse.org/opensuse-updates/2013-08/msg00026.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-updates/2013-08/msg00029.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-updates/2013-08/msg00030.htmlMailing List, Third Party Advisory
- http://people.apache.org/~jorton/mod_rewrite-CVE-2013-1862.patchPatch, Vendor Advisory
- http://rhn.redhat.com/errata/RHSA-2013-0815.htmlThird Party Advisory
- http://rhn.redhat.com/errata/RHSA-2013-1207.htmlThird Party Advisory
- http://rhn.redhat.com/errata/RHSA-2013-1208.htmlThird Party Advisory
- http://rhn.redhat.com/errata/RHSA-2013-1209.htmlThird Party Advisory
- http://secunia.com/advisories/55032Not Applicable
- http://support.apple.com/kb/HT6150Third Party Advisory
- http://svn.apache.org/viewvc?view=revision&revision=r1469311Patch, Vendor Advisory
- http://www-01.ibm.com/support/docview.wss?uid=swg21644047Third Party Advisory
- http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.htmlThird Party Advisory
- http://www.securityfocus.com/bid/59826Third Party Advisory, VDB Entry
- http://www.securityfocus.com/bid/64758Third Party Advisory, VDB Entry
- http://www.ubuntu.com/usn/USN-1903-1Third Party Advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=953729Issue Tracking, Third Party Advisory
- http://lists.opensuse.org/opensuse-updates/2013-08/msg00026.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-updates/2013-08/msg00029.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-updates/2013-08/msg00030.htmlMailing List, Third Party Advisory
- http://people.apache.org/~jorton/mod_rewrite-CVE-2013-1862.patchPatch, Vendor Advisory
- http://rhn.redhat.com/errata/RHSA-2013-0815.htmlThird Party Advisory
- http://rhn.redhat.com/errata/RHSA-2013-1207.htmlThird Party Advisory
- http://rhn.redhat.com/errata/RHSA-2013-1208.htmlThird Party Advisory
- http://rhn.redhat.com/errata/RHSA-2013-1209.htmlThird Party Advisory
- http://secunia.com/advisories/55032Not Applicable
- http://support.apple.com/kb/HT6150Third Party Advisory
- http://svn.apache.org/viewvc?view=revision&revision=r1469311Patch, Vendor Advisory
- http://www-01.ibm.com/support/docview.wss?uid=swg21644047Third Party Advisory
- http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.htmlThird Party Advisory
- http://www.securityfocus.com/bid/59826Third Party Advisory, VDB Entry
- http://www.securityfocus.com/bid/64758Third Party Advisory, VDB Entry
- http://www.ubuntu.com/usn/USN-1903-1Third Party Advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=953729Issue Tracking, Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2013-1862?
mod_rewrite.c in the mod_rewrite module in the Apache HTTP Server 2.2.x before 2.2.25 writes data to a log file without sanitizing non-printable characters, which might allow remote attackers to execute arbitrary commands via an HTTP request containing an escape sequence for a terminal emulator.
How severe is CVE-2013-1862?
Severity scoring for CVE-2013-1862 is pending analysis. The EPSS model estimates a 24.89% probability of exploitation in the next 30 days.
How do I fix CVE-2013-1862?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.
Are you affected by CVE-2013-1862?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST