Description

mod_digest for Apache before 1.3.31 does not properly verify the nonce of a client response by using a AuthNonce secret.

Remediation

References

CVE-2003-0987

Related Vulnerabilities

Dot CMS Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2022-45783)

WordPress Plugin WP-RecentComments 'page' Parameter Cross-Site Scripting (2.0.6)

WebLogic Deserialization of Untrusted Data Vulnerability (CVE-2019-20330)

IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9701)

Internet Information Services Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2010-2730)

Severity

High

Classification

CVE-2003-0987

Tags

Missing Update Known Vulnerabilities