Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2001-1556

Опубликовано: 31 дек. 2001
Источник: nvd
CVSS2: 5
EPSS Низкий

Описание

The log files in Apache web server contain information directly supplied by clients and does not filter or quote control characters, which could allow remote attackers to hide HTTP requests and spoof source IP addresses when logs are viewed with UNIX programs such as cat, tail, and grep.

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*
Версия от 1.3.0 (включая) до 1.3.31 (исключая)
cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*
Версия от 2.0.0 (включая) до 2.0.49 (исключая)

EPSS

Процентиль: 86%
0.03202
Низкий

5 Medium

CVSS2

Дефекты

CWE-532

Связанные уязвимости

CVSS3: 3.3
redhat
больше 23 лет назад

The log files in Apache web server contain information directly supplied by clients and does not filter or quote control characters, which could allow remote attackers to hide HTTP requests and spoof source IP addresses when logs are viewed with UNIX programs such as cat, tail, and grep.

debian
больше 23 лет назад

The log files in Apache web server contain information directly suppli ...

github
больше 3 лет назад

The log files in Apache web server contain information directly supplied by clients and does not filter or quote control characters, which could allow remote attackers to hide HTTP requests and spoof source IP addresses when logs are viewed with UNIX programs such as cat, tail, and grep.

EPSS

Процентиль: 86%
0.03202
Низкий

5 Medium

CVSS2

Дефекты

CWE-532