Description
mod_rewrite.c in the mod_rewrite module in the Apache HTTP Server 2.2.x before 2.2.25 writes data to a log file without sanitizing non-printable characters, which might allow remote attackers to execute arbitrary commands via an HTTP request containing an escape sequence for a terminal emulator.
Remediation
References
Related Vulnerabilities
WordPress Plugin Controlled Admin Access Security Bypass (1.5.5)
MySQL CVE-2013-0389 Vulnerability (CVE-2013-0389)
WordPress Plugin Xhanch-My Twitter Multiple Cross-Site Request Forgery Vulnerabilities (2.7.7)
PHP Other Vulnerability (CVE-2014-9425)
WordPress Plugin Woocommerce Category Banner Management Security Bypass (1.1.1)