Description

The rotatelogs program on Apache before 1.3.28, for Windows and OS/2 systems, does not properly ignore certain control characters that are received over the pipe, which could allow remote attackers to cause a denial of service.

Remediation

References

CVE-2003-0460

Related Vulnerabilities

WordPress 4.1.x Cross-Domain Flash Injection Vulnerability (4.1 - 4.1.21)

Moodle CVE-2024-25979 Vulnerability (CVE-2024-25979)

WordPress Plugin Genesis Columns Advanced Cross-Site Scripting (2.0.3)

PrestaShop Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2020-15081)

Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-6098)

Severity

Medium

Classification

CVE-2003-0460

Tags

Missing Update Known Vulnerabilities