Apache Access Log Escape Sequence Vulnerability

CVE-2003-0083 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:N

Apache 1.3 before 1.3.25 and Apache 2.0 before version 2.0.46 does not filter terminal escape sequences from its access logs, which could make it easier for attackers to insert those sequences into terminal emulators containing vulnerabilities related to escape sequences, a different vulnerability than CVE-2003-0020.

Learn more about our Web Application Penetration Testing UK.