CVE-2003-0460

Apache HTTP Server < 1.3.27 - Denial of Service via rotatelogs Control Character Handling

Title source: llm
STIX 2.1

Description

The rotatelogs program on Apache before 1.3.28, for Windows and OS/2 systems, does not properly ignore certain control characters that are received over the pipe, which could allow remote attackers to cause a denial of service.

Scores

EPSS 0.1343
EPSS Percentile 96.0%

Details

Status published
Products (1)
apache/http_server < 1.3.27
Published Aug 27, 2003
Tracked Since Feb 18, 2026