Boa Webserver Terminal Escape Sequence in Logs Command Injection Vulnerability

Summary
Boa Webserver is prone to a command-injection vulnerability because it fails to adequately sanitize user-supplied input in logfiles. Attackers can exploit this issue to execute arbitrary commands in a terminal. Boa Webserver 0.94.14rc21 is vulnerable other versions may also be affected.
References