Lucene search

K
httpdApache Team FoundationHTTPD:7B789993A3BDA0E4D014A8671E97D1EA
HistoryFeb 24, 2003 - 12:00 a.m.

Apache Httpd < 1.3.31 : Error log escape filtering

2003-02-2400:00:00
Apache Team Foundation
httpd.apache.org
28

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

EPSS

0.01

Percentile

83.8%

Apache does not filter terminal escape sequences from error logs, which could make it easier for attackers to insert those sequences into terminal emulators containing vulnerabilities related to escape sequences.

Affected configurations

Vulners
Node
apacheapache_httpdMatch1.3.29
OR
apacheapache_httpdMatch1.3.28
OR
apacheapache_httpdMatch1.3.27
OR
apacheapache_httpdMatch1.3.26
OR
apacheapache_httpdMatch1.3.24
OR
apacheapache_httpdMatch1.3.22
OR
apacheapache_httpdMatch1.3.20
OR
apacheapache_httpdMatch1.3.19
OR
apacheapache_httpdMatch1.3.17
OR
apacheapache_httpdMatch1.3.14
OR
apacheapache_httpdMatch1.3.12
OR
apacheapache_httpdMatch1.3.11
OR
apacheapache_httpdMatch1.3.9
OR
apacheapache_httpdMatch1.3.6
OR
apacheapache_httpdMatch1.3.4
OR
apacheapache_httpdMatch1.3.3
OR
apacheapache_httpdMatch1.3.2
OR
apacheapache_httpdMatch1.3.1
OR
apacheapache_httpdMatch1.3.0
VendorProductVersionCPE
apacheapache_httpd1.3.29cpe:2.3:a:apache:apache_httpd:1.3.29:*:*:*:*:*:*:*
apacheapache_httpd1.3.28cpe:2.3:a:apache:apache_httpd:1.3.28:*:*:*:*:*:*:*
apacheapache_httpd1.3.27cpe:2.3:a:apache:apache_httpd:1.3.27:*:*:*:*:*:*:*
apacheapache_httpd1.3.26cpe:2.3:a:apache:apache_httpd:1.3.26:*:*:*:*:*:*:*
apacheapache_httpd1.3.24cpe:2.3:a:apache:apache_httpd:1.3.24:*:*:*:*:*:*:*
apacheapache_httpd1.3.22cpe:2.3:a:apache:apache_httpd:1.3.22:*:*:*:*:*:*:*
apacheapache_httpd1.3.20cpe:2.3:a:apache:apache_httpd:1.3.20:*:*:*:*:*:*:*
apacheapache_httpd1.3.19cpe:2.3:a:apache:apache_httpd:1.3.19:*:*:*:*:*:*:*
apacheapache_httpd1.3.17cpe:2.3:a:apache:apache_httpd:1.3.17:*:*:*:*:*:*:*
apacheapache_httpd1.3.14cpe:2.3:a:apache:apache_httpd:1.3.14:*:*:*:*:*:*:*
Rows per page:
1-10 of 191

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

EPSS

0.01

Percentile

83.8%