CVE-2009-4487

nginx 0.7.64 - Terminal Emulator Escape Sequence Injection via Log File

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2009-4487. PoCs published by evilaliv3.

AI-analyzed exploit summary The exploit demonstrates a command injection vulnerability in nginx 0.7.64 by sending maliciously crafted HTTP requests containing terminal escape sequences. These sequences manipulate the terminal emulator's title, potentially leading to arbitrary command execution when logs are viewed in a vulnerable terminal.

Description

nginx 0.7.64 writes data to a log file without sanitizing non-printable characters, which might allow remote attackers to modify a window's title, or possibly execute arbitrary commands or overwrite files, via an HTTP request containing an escape sequence for a terminal emulator.

Exploits (1)

exploitdb WORKING POC VERIFIED
by evilaliv3 · textremotemultiple
https://www.exploit-db.com/exploits/33490

The exploit demonstrates a command injection vulnerability in nginx 0.7.64 by sending maliciously crafted HTTP requests containing terminal escape sequences. These sequences manipulate the terminal emulator's title, potentially leading to arbitrary command execution when logs are viewed in a vulnerable terminal.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: nginx 0.7.64
No auth needed
Prerequisites: nginx 0.7.64 with logging enabled · terminal emulator vulnerable to escape sequence injection
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (3)

Core 3
Core References
Broken Link, Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/37711
Exploit, Patch, Third Party Advisory x_refsource_misc
http://www.ush.it/team/ush/hack_httpd_escape/adv.txt
Broken Link, Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/508830/100/0/threaded

Scores

EPSS 0.2701
EPSS Percentile 97.8%

Details

Status published
Products (1)
f5/nginx 0.7.64
Published Jan 13, 2010
Tracked Since Feb 18, 2026