Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0730

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2001-0730
Last Modified 10 Sep 2008 03:08:43
Published 30 Oct 2001 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2001-0730

Summary

split-logfile in Apache 1.3.20 allows remote attackers to overwrite arbitrary files that end in the .log extension via an HTTP request with a / (slash) in the Host: header.

Vulnerable Systems

Application

  • Apache Http Server 1.3.20


References

CONFIRM - http://www.apacheweek.com/issues/01-09-28#security

XF - apache-log-file-overwrite(7419)

REDHAT - RHSA-2001:164

REDHAT - RHSA-2001:126

ENGARDE - ESA-20011019-01

MANDRAKE - MDKSA-2001:077

CONECTIVA - CLA-2001:430


Last Updated: 27 May 2016 10:36:22