Back to search
CVE-2003-0993
Published: Sep 1, 2004
Modified: Aug 8, 2024
PUBLISHED
Description
mod_access in Apache 1.3 before 1.3.30, when running big-endian 64-bit platforms, does not properly parse Allow/Deny rules using IP addresses without a netmask, which could allow remote attackers to bypass intended access restrictions.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
http://www.apacheweek.com/features/security-13
x_refsource_CONFIRM
57628
vendor-advisory
x_refsource_SUNALERT
101555
vendor-advisory
x_refsource_SUNALERT
2004-0027
vendor-advisory
x_refsource_TRUSTIX
101841
vendor-advisory
x_refsource_SUNALERT
20040512 [OpenPKG-SA-2004.021] OpenPKG Security Advisory (apache)
mailing-list
x_refsource_BUGTRAQ
SSA:2004-133
vendor-advisory
x_refsource_SLACKWARE
GLSA-200405-22
vendor-advisory
x_refsource_GENTOO
oval:org.mitre.oval:def:100111
vdb-entry
signature
x_refsource_OVAL
[apache-cvs] 20040307 cvs commit: apache-1.3/src/modules/standard mod_access.c
mailing-list
x_refsource_MLIST
MDKSA-2004:046
vendor-advisory
x_refsource_MANDRAKE
apache-modaccess-obtain-information(15422)
vdb-entry
x_refsource_XF
http://issues.apache.org/bugzilla/show_bug.cgi?id=23850
x_refsource_CONFIRM
9829
vdb-entry
x_refsource_BID
oval:org.mitre.oval:def:4670
vdb-entry
signature
x_refsource_OVAL
[httpd-cvs] 20210330 svn commit: r1073139 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/json/
mailing-list
x_refsource_MLIST
[httpd-cvs] 20210330 svn commit: r1073139 [2/13] - in /websites/staging/httpd/trunk/content: ./ security/json/
mailing-list
x_refsource_MLIST
[httpd-cvs] 20210330 svn commit: r1888194 [2/13] - /httpd/site/trunk/content/security/json/
mailing-list
x_refsource_MLIST
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now