Description

mod_access in Apache 1.3 before 1.3.30, when running big-endian 64-bit platforms, does not properly parse Allow/Deny rules using IP addresses without a netmask, which could allow remote attackers to bypass intended access restrictions.

Remediation

References

CVE-2003-0993

Related Vulnerabilities

Ruby on Rails Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-3514)

WordPress Plugin Wholesale Market for WooCommerce Arbitrary File Download (1.0.7)

WordPress Plugin WordPress Download Manager Multiple Security Bypass Vulnerabilities (2.6.92)

Jenkins Integer Overflow or Wraparound Vulnerability (CVE-2023-36478)

WordPress Plugin Contextual Related Posts Cross-Site Request Forgery (2.9.3)

Severity

High

Classification

CVE-2003-0993

Tags

Missing Update Known Vulnerabilities