Oval Definition:
oval:org.mitre.oval:def:100109
Revision Date
:
2005-11-16
Version
:
17
Title
:
Apache Error Log Escape Sequence Filtering Vulnerability
Description
:
Apache does not filter terminal escape sequences from its error logs, which could make it easier for attackers to insert those sequences into terminal emulators containing vulnerabilities related to escape sequences.
Family
:
unix
Class
:
vulnerability
Status
:
ACCEPTED
Reference(s)
:
CVE-2003-0020
Platform(s)
:
Sun Solaris 8
Sun Solaris 9
Product(s)
:
Apache
Definition Synopsis
Solaris 8 (SPARC) meets Sun Alert ID 101555 criteria.
Solaris 8 Installed
AND
Installed architecture is sparc
AND
NOT
Patch 116973-02 or later installed
OR
Solaris 8 (x86) meets Sun Alert ID 101555 criteria.
Solaris 8 Installed
AND
ix86 architecture
AND
NOT
Patch 116974-02 or later installed
OR
Solaris 9 (SPARC) meets Sun Alert ID 101555 criteria.
Solaris 9 Installed
AND
Installed architecture is sparc
AND
NOT
Patch 113146-05 or later installed
OR
Solaris 9 (x86) meets Sun Alert ID 101555 criteria.
Solaris 9 Installed
AND
ix86 architecture
AND
NOT
Patch 114145-04 or later installed
OR
Apache running (httpd)
BACK