The log files in Apache web server contain information directly supplied by clients and does not filter or quote control characters, which could allow remote attackers to hide HTTP requests and spoof source IP addresses when logs are viewed with UNIX programs such as cat, tail, and grep.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2005-07-14T04:00:00Z

Updated: 2024-09-16T17:54:21.123Z

Reserved: 2005-07-14T00:00:00Z

Link: CVE-2001-1556

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2001-12-31T05:00:00.000

Modified: 2024-11-20T23:37:58.117

Link: CVE-2001-1556

cve-icon Redhat

Severity : Low

Publid Date: 2001-12-31T00:00:00Z

Links: CVE-2001-1556 - Bugzilla