The log files in Apache web server contain information directly supplied by clients and does not filter or quote control characters, which could allow remote attackers to hide HTTP requests and spoof source IP addresses when logs are viewed with UNIX programs such as cat, tail, and grep.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2005-07-14T04:00:00Z
Updated: 2024-09-16T17:54:21.123Z
Reserved: 2005-07-14T00:00:00Z
Link: CVE-2001-1556
Vulnrichment
No data.
NVD
Status : Modified
Published: 2001-12-31T05:00:00.000
Modified: 2024-11-20T23:37:58.117
Link: CVE-2001-1556
Redhat