Apache – CVE-2002-1592

Description

Kayran has detected that the “ap_log_rerror” function in the version of Apache being used returns warning messages to end users. Also known as CVE-2002-1592.

These messages are being returned in addition to being recorded in the error log.
These error messages could include the full path for the server.

Remote attackers might abuse it to obtain sensitive information and initiate attacks against it.

Severity/Score

CVSS Version 2.0 – 5.0 Medium

Recommendation

To prevent CVE-2002-1592, update the version of the Apache httpd being used to 2.0.36 or higher.

References

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1592

< Return to all Vulnerabilities

Bug Bounties

As pirates, we all love plundering, we all love raiding, but mostly, we all love bounties, especially Bug Bounties. Let’s talk about it. Bug Bounties

Read More »

Man-In-The-Middle Attacks

Do you know these people who just push themselves into conversations?That’s Man-In-The-Middle Attacks. And from a wider angle, Man-In-The-Middle Attacks, or MITM, are built around

Read More »

Browser Exploitation

We know that it’s possible to exploit weaknesses (or vulnerabilities) that exist in anything, from a certain code to the entire application, let’s talk about

Read More »

What is Kayran

Kayran scanner is helping all businesses, both SMBs and enterprises, to test their online assets and products for over 30,000+ vulnerabilities.Kayran’s mission is to make

Read More »