Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
httpdApache Team FoundationHTTPD:A58AFF3264D7CF25734D9963624EF134
HistoryFeb 24, 2003 - 12:00 a.m.

Apache Httpd < 2.0.46 : Filtered escape sequences

2003-02-2400:00:00
Apache Team Foundation
httpd.apache.org
12

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

0.016 Low

EPSS

Percentile

87.3%

JSON

Apache did not filter terminal escape sequences from its access logs, which could make it easier for attackers to insert those sequences into terminal emulators containing vulnerabilities related to escape sequences.

Related

seebug 4
httpd 1
packetstorm 2
cve 1
nessus 2
exploitpack 1
debiancve 1
securityvulns 2
exploitdb 1
cert 1
seebug
seebug
Apacheη»ˆη«―θ½¬δΉ‰εΊεˆ—θΏ‡ζ»€ζΌζ΄ž
2008-10-05 00:00:00
jetty 6.x - 7.x xss information disclosure injection
2009-10-26 00:00:00
jetty 6.x - 7.x xss, information disclosure, injection
2014-07-01 00:00:00
httpd
httpd
Apache Httpd < 1.3.26 : Filtered escape sequences
2003-02-24 00:00:00
packetstorm
packetstorm
Jetty 6.x / 7.x Information Disclosure / XSS
2009-10-26 00:00:00
Nginx, Varnish, Cherokee, etc Log Injection
2010-01-11 00:00:00
cve
cve
CVE-2003-0083
2003-04-02 05:00:00
nessus
nessus
Apache 2.0.x < 2.0.43 Multiple Vulnerabilities (Log Injection, Source Disc.)
2003-03-17 00:00:00
Mandrake Linux Security Advisory : apache2 (MDKSA-2003:050)
2004-07-31 00:00:00
exploitpack
exploitpack
jetty 6.x 7.x - Cross-Site Scripting Information Disclosure Injection
2009-10-26 00:00:00
debiancve
debiancve
CVE-2003-0083
2003-04-02 05:00:00
securityvulns
securityvulns
Jetty 6.x and 7.x Multiple Vulnerabilities
2009-10-26 00:00:00
Nginx, Varnish, Cherokee, thttpd, mini-httpd, WEBrick, Orion, AOLserver, Yaws and Boa log escape sequence injection
2010-01-12 00:00:00
exploitdb
exploitdb
jetty 6.x &lt; 7.x - Cross-Site Scripting / Information Disclosure / Injection
2009-10-26 00:00:00
cert
cert
Apache vulnerable to DoS
2003-04-08 00:00:00

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

0.016 Low

EPSS

Percentile

87.3%

JSON
Related for HTTPD:A58AFF3264D7CF25734D9963624EF134
seebug4httpd1packetstorm2cve1nessus2exploitpack1debiancve1securityvulns2exploitdb1cert1