split-logfile in Apache 1.3.20 allows remote attackers to overwrite arbitrary files that end in the .log extension via an HTTP request with a / (slash) in the Host: header.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Http_server | Apache | 1.3.20 (including) | 1.3.20 (including) |