Description
Apache does not filter terminal escape sequences from its error logs, which could make it easier for attackers to insert those sequences into terminal emulators containing vulnerabilities related to escape sequences.
Remediation
References
Related Vulnerabilities
Chamilo Missing Authorization Vulnerability (CVE-2019-1000017)
WordPress Plugin FunCaptcha-Anti-Spam CAPTCHA Multiple Cross-Site Scripting Vulnerabilities (0.4.3)
WordPress Plugin WordPress Access Areas Security Bypass (1.3.0)
WordPress Plugin Media File Manager Advanced Multiple Vulnerabilities (1.1.5)
Oracle Application Server CVE-2008-1824 Vulnerability (CVE-2008-1824)