Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Apache HTTP Server Insertion of Sensitive Information into Log File Vulnerability - CVE-2001-1556 - Vulnerability Database
Apache HTTP Server

Apache HTTP Server Insertion of Sensitive Information into Log File Vulnerability - CVE-2001-1556

Medium
Reference: CVE-2001-1556
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2001-1556
Title: Apache HTTP Server Insertion of Sensitive Information into Log File Vulnerability
Overview:

The log files in Apache web server contain information directly supplied by clients and does not filter or quote control characters which could allow remote attackers to hide HTTP requests and spoof source IP addresses when logs are viewed with UNIX programs such as cat tail and grep.