Description
mod_access in Apache 1.3 before 1.3.30, when running big-endian 64-bit platforms, does not properly parse Allow/Deny rules using IP addresses without a netmask, which could allow remote attackers to bypass intended access restrictions.
Remediation
References
Related Vulnerabilities
Ruby on Rails Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-3514)
WordPress Plugin Wholesale Market for WooCommerce Arbitrary File Download (1.0.7)
WordPress Plugin WordPress Download Manager Multiple Security Bypass Vulnerabilities (2.6.92)
Jenkins Integer Overflow or Wraparound Vulnerability (CVE-2023-36478)
WordPress Plugin Contextual Related Posts Cross-Site Request Forgery (2.9.3)