Description
The rotatelogs program on Apache before 1.3.28, for Windows and OS/2 systems, does not properly ignore certain control characters that are received over the pipe, which could allow remote attackers to cause a denial of service.
Remediation
References
Related Vulnerabilities
WordPress 4.1.x Cross-Domain Flash Injection Vulnerability (4.1 - 4.1.21)
Moodle CVE-2024-25979 Vulnerability (CVE-2024-25979)
WordPress Plugin Genesis Columns Advanced Cross-Site Scripting (2.0.3)
PrestaShop Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2020-15081)
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-6098)