Apache Error Log Escape Sequence Injection Vulnerability

Apache webserver is prone to a vulnerability that may allow remote attackers to inject escape sequences into Apache log files. This may facilitate exploitation of issues such as those found in BIDs 6936 and 6938.

Successful exploits may allow attackers to create arbitrary files and execute code on the affected system.


 

Privacy Statement
Copyright 2010, SecurityFocus