{"vuid":"VU#694428","idnumber":"694428","name":"Apache stops writing access/error logs after processing \"Request-URI\" containing \"0x1A\" characters","keywords":["Apache","log files","Request-URI","0x1A character","CustomLog directive","ErrorLog directive"],"overview":"A vulnerability in the logging of URI requests may permit a remote attacker to disable logging on an Apache HTTP Server. Version 1.3.27 on Windows systems is reported vulnerable to this issue.","clean_desc":"Apache HTTP Server 1.3.27 running on Win32 systems contains a vulnerability that could enable an attacker to stop the logging process. If the server is configured to use rotatelogs then an attacker can stop logging on the server by sending a crafted URI Request.","impact":"Logging on the web server will be disabled. This can be used to mask future attacks against the server.","resolution":"Upgrade to Apache 1.3.28 to resolve this issue.","workarounds":"Disable the rotatelogs utility on CustomLog or ErrorLog directives.","sysaffected":"","thanks":"Thanks to Hitachi Incident Response Team for reporting this vulnerability.","author":"This document was written by Jason A Rafail.","public":["h","t","t","p",":","/","/","w","w","w",".","a","p","a","c","h","e",".","o","r","g","/","d","i","s","t","/","h","t","t","p","d","/","C","H","A","N","G","E","S","_","1",".","3"],"cveids":["CVE-2003-0460"],"certadvisory":"","uscerttechnicalalert":null,"datecreated":"2003-07-03T19:49:10Z","publicdate":"2003-07-21T00:00:00Z","datefirstpublished":"2003-07-21T14:49:33Z","dateupdated":"2003-07-21T14:49:47Z","revision":10,"vrda_d1_directreport":"","vrda_d1_population":"","vrda_d1_impact":"","cam_widelyknown":"1","cam_exploitation":"0","cam_internetinfrastructure":"10","cam_population":"15","cam_impact":"2","cam_easeofexploitation":"20","cam_attackeraccessrequired":"20","cam_scorecurrent":"2.475","cam_scorecurrentwidelyknown":"6.75","cam_scorecurrentwidelyknownexploited":"11.25","ipprotocol":"","cvss_accessvector":"","cvss_accesscomplexity":"","cvss_authentication":null,"cvss_confidentialityimpact":"","cvss_integrityimpact":"","cvss_availabilityimpact":"","cvss_exploitablity":null,"cvss_remediationlevel":"","cvss_reportconfidence":"","cvss_collateraldamagepotential":"","cvss_targetdistribution":"","cvss_securityrequirementscr":"","cvss_securityrequirementsir":"","cvss_securityrequirementsar":"","cvss_basescore":"","cvss_basevector":"","cvss_temporalscore":"","cvss_environmentalscore":"","cvss_environmentalvector":"","metric":2.475,"vulnote":null}