Apache – CVE-2002-1592

Description

Kayran has detected that the “ap_log_rerror” function in the version of Apache being used returns warning messages to end users. Also known as CVE-2002-1592.

These messages are being returned in addition to being recorded in the error log.
These error messages could include the full path for the server.

Remote attackers might abuse it to obtain sensitive information and initiate attacks against it.

Recommendation

To prevent CVE-2002-1592, update the version of the Apache httpd being used to 2.0.36 or higher.

References

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1592

< Return to all Vulnerabilities

What is Kayran

Kayran scanner is helping all businesses, both SMBs and enterprises, to test their online assets and products for over 9000 vulnerabilities.Kayran’s mission is to make

Read More »

What is a CWE ?

Similar to the article written on CVEs, in this article we will answer the questions :What is CWE ? and, what is the difference between

Read More »

Crossing Scripts – XSS

Injections. SQL Injections. Cross-site Scripting (hence the amazing title “Crossing Scripts – XSS”). There all sorts of Injection-Based attacks, if you want to read about

Read More »