Description

The rotatelogs program on Apache before 1.3.28, for Windows and OS/2 systems, does not properly ignore certain control characters that are received over the pipe, which could allow remote attackers to cause a denial of service.

Remediation

References

CVE-2003-0460

Related Vulnerabilities

silverstripeCMS Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2010-5091)

WordPress Plugin Webapp builder (Free mobile apps native iPhone iOS & Android Winphone mobile apps) Arbitrary File Upload (2.0)

Joomla Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-18650)

WordPress Plugin Easy Social Feed-Social Photos Gallery-Post Feed-Like Box Security Bypass (6.3.3)

Apache HTTP Server Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2009-3560)

Severity

Medium

Classification

CVE-2003-0460

Tags

Missing Update Known Vulnerabilities