CVE-2009-4487 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	6.8 UNKNOWN	NETWORK	MEDIUM		AV:N/AC:M/Au:N/C:P/I:P/A:P

Base Score

CVSS 3.x

EPSS Score

Percentile: 84%

Affected Products (NVD)

Vendor	Product	Version
f5	nginx	0.7.64

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

nginx

bookworm	unimportant
bullseye	unimportant
bullseye (security)	unimportant
sid	unimportant
trixie	unimportant

Ubuntu Releases

Ubuntu Product

Codename

nginx

dapper	dne
hardy	ignored
intrepid	ignored
jaunty	ignored
karmic	ignored
lucid	ignored
maverick	ignored
natty	ignored
oneiric	ignored
precise	ignored

Known Exploits!

References

http://www.securityfocus.com/archive/1/508830/100/0/threaded

http://www.securityfocus.com/bid/37711

http://www.ush.it/team/ush/hack_httpd_escape/adv.txt

http://www.securityfocus.com/archive/1/508830/100/0/threaded

http://www.securityfocus.com/bid/37711

http://www.ush.it/team/ush/hack_httpd_escape/adv.txt