Apache error log escape sequence injection vulnerability

Description
  • <div class="bb-coolbox"><span class="bb-dark">This alert was generated using only banner information. It may be a false positive. </span></div><br/>This version of Apache is vulnerable to escape character sequences injection into error log.This problem may be exploited when a vulnerable terminal emulator is used. <br/><br/><span class="bb-navy">Affected Apache versions (up to 2.0.48 for Apache 2.x and up to 1.3.29 for Apache 1.x).</span><br/>
Remediation
  • Upgrade to the latest version of Apache.
References
Severity
Classification
Tags