CVE-2009-4493

Orion Application Server 2.0.7 - Code Injection

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2009-4493. PoCs published by evilaliv3.

AI-analyzed exploit summary The exploit demonstrates a command injection vulnerability in Orion Application Server 2.0.7 by sending a crafted HTTP request with escape sequences that manipulate terminal emulation, leading to arbitrary command execution. The provided curl and netcat commands show practical exploitation.

Description

Orion Application Server 2.0.7 writes data to a log file without sanitizing non-printable characters, which might allow remote attackers to modify a window's title, or possibly execute arbitrary commands or overwrite files, via an HTTP request containing an escape sequence for a terminal emulator.

Exploits (1)

exploitdb WORKING POC VERIFIED
by evilaliv3 · textremotemultiple
https://www.exploit-db.com/exploits/33503

The exploit demonstrates a command injection vulnerability in Orion Application Server 2.0.7 by sending a crafted HTTP request with escape sequences that manipulate terminal emulation, leading to arbitrary command execution. The provided curl and netcat commands show practical exploitation.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: Orion Application Server 2.0.7
No auth needed
Prerequisites: Network access to the target server · Terminal emulation support on the server
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (2)

Core 2
Core References
Various Sources x_refsource_misc
http://www.ush.it/team/ush/hack_httpd_escape/adv.txt
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/508830/100/0/threaded

Scores

EPSS 0.0684
EPSS Percentile 93.2%

Details

CWE
CWE-20
Status published
Products (1)
orion/orion_application_server 2.0.7
Published Jan 13, 2010
Tracked Since Feb 18, 2026