← CVECheck
HomeVulnerabilities

CVE-2002-1592 — MEDIUM severity vulnerability (The ap_log_rerror function in Apache 2.0 through 2.035, when)

The ap_log_rerror function in Apache 2.0 through 2.035, when a CGI application encounters an error, sends error messages to the client that include the full path for the server, which allows remote attackers to obtain sensitive information.

CVE IDCVE-2002-1592
SeverityMEDIUM
CVSS score5.0
CVSS vectorAV:N/AC:L/Au:N/C:P/I:N/A:N
CWENVD-CWE-Other
StatusModified
Published2002-05-06
Last modified2026-04-16
DescriptionThe ap_log_rerror function in Apache 2.0 through 2.035, when a CGI application encounters an error, sends error messages to the client that include the full path for the server, which allows remote attackers to obtain sensitive information.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →