Apache Error Log Escape Sequence Injection Vulnerability

This alert was generated using only banner information. It may be a false positive.

This version of Apache is vulnerable to escape character sequences injection into error log.This problem may be exploited when a vulnerable terminal emulator is used.

Affected Apache versions (up to 2.0.48 for Apache 2.x and up to 1.3.29 for Apache 1.x).

ShareShare on FacebookTweet about this on TwitterShare on Google+

Possible file creation and/or code execution (if vulnerable terminal emulator is present)

Upgrade to the latest version of Apache.

BID 9930
Apache homepage