CVE 2003-0987
mod_digest for Apache before 1.3.31 does not properly verify the nonce of a client response by using a AuthNonce secret.
See the 
CVE page on Mitre.org
for more details.
Launchpad.net
References
- CONFIRM: http://www.mail-archiv...
- CONFIRM: http://www.mail-archiv...
- REDHAT: RHSA-2004:600
- SUNALERT: 57628
- TRUSTIX: 2004-0027
- GENTOO: GLSA-200405-22
- BID: 9571
- SECTRACK: 1008920
- REDHAT: RHSA-2005:816
- SUNALERT: 101555
- SUNALERT: 101841
- MANDRAKE: MDKSA-2004:046
- SLACKWARE: SSA:2004-133
- BUGTRAQ: 20040512 [OpenPKG-SA-2...
- XF: apache-moddigest-respo...
- OVAL: oval:org.mitre.oval:de...
- OVAL: oval:org.mitre.oval:de...
- MLIST: [httpd-cvs] 20210330 s...
- MLIST: [httpd-cvs] 20210330 s...
- MLIST: [httpd-cvs] 20210330 s...
- MLIST: [httpd-cvs] 20210330 s...
- MLIST: [httpd-cvs] 20210330 s...
- MLIST: [httpd-cvs] 20210330 s...
- MLIST: [httpd-cvs] 20210603 s...
- MLIST: [httpd-cvs] 20210606 s...
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
a60fb26
(Get the code!)