6.3 Medium
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
0.01 Low
EPSS
Percentile
83.6%
Apache does not filter terminal escape sequences from its error logs, which could make it easier for attackers to insert those sequences into terminal emulators containing vulnerabilities related to escape sequences.
CPE | Name | Operator | Version |
---|---|---|---|
apache:http_server | apache http server | lt | 2.0.49 |
apache:http_server | apache http server | lt | 1.3.31 |
archives.neohapsis.com/archives/vulnwatch/2003-q1/0093.html
frontal2.mandriva.com/security/advisories?name=MDKSA-2004:046
marc.info/?l=bugtraq&m=104612710031920&w=2
marc.info/?l=bugtraq&m=108369640424244&w=2
marc.info/?l=bugtraq&m=108437852004207&w=2
marc.info/?l=bugtraq&m=108731648532365&w=2
security.gentoo.org/glsa/glsa-200405-22.xml
sunsolve.sun.com/search/document.do?assetkey=1-26-101555-1
sunsolve.sun.com/search/document.do?assetkey=1-26-57628-1
www.iss.net/security_center/static/11412.php
www.mandrakesoft.com/security/advisories?name=MDKSA-2003:050
www.redhat.com/support/errata/RHSA-2003-082.html
www.redhat.com/support/errata/RHSA-2003-083.html
www.redhat.com/support/errata/RHSA-2003-104.html
www.redhat.com/support/errata/RHSA-2003-139.html
www.redhat.com/support/errata/RHSA-2003-243.html
www.redhat.com/support/errata/RHSA-2003-244.html
www.securityfocus.com/bid/9930
www.slackware.com/security/viewer.php?l=slackware-security&y=2004&m=slackware-security.529643
www.trustix.org/errata/2004/0017
www.trustix.org/errata/2004/0027
lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac%40%3Ccvs.httpd.apache.org%3E
lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79%40%3Ccvs.httpd.apache.org%3E
lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc%40%3Ccvs.httpd.apache.org%3E
lists.apache.org/thread.html/r2cb985de917e7da0848c440535f65a247754db8b2154a10089e4247b%40%3Ccvs.httpd.apache.org%3E
lists.apache.org/thread.html/r5001ecf3d6b2bdd0b732e527654248abb264f08390045d30709a92f6%40%3Ccvs.httpd.apache.org%3E
lists.apache.org/thread.html/r5419c9ba0951ef73a655362403d12bb8d10fab38274deb3f005816f5%40%3Ccvs.httpd.apache.org%3E
lists.apache.org/thread.html/r7035b7c9091c4b665a3b7205364775410646f12125d48e74e395f2ce%40%3Ccvs.httpd.apache.org%3E
lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb%40%3Ccvs.httpd.apache.org%3E
lists.apache.org/thread.html/r9e8622254184645bc963a1d47c5d47f6d5a36d6f080d8d2c43b2b142%40%3Ccvs.httpd.apache.org%3E
lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E
lists.apache.org/thread.html/rd00b45b93fda4a5bd013b28587207d0e00f99f6e3308dbb6025f3b01%40%3Ccvs.httpd.apache.org%3E
lists.apache.org/thread.html/re028d61fe612b0908595d658b9b39e74bca56f2a1ed3c5f06b5ab571%40%3Ccvs.httpd.apache.org%3E
lists.apache.org/thread.html/rf2f0f3611f937cf6cfb3b4fe4a67f69885855126110e1e3f2fb2728e%40%3Ccvs.httpd.apache.org%3E
lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100109
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A150
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4114