New Search

Apache mod_digest Nonce Verification Vulnerability

oval:org.mitre.oval:def:4416

mod_digest for Apache before 1.3.31 does not properly verify the nonce of a client response by using a AuthNonce secret.

Family:
unix
Status:
ACCEPTED
Platform(s):
  • Sun Solaris 9
  • Sun Solaris 8
Class:
vulnerability
Reference(s):
  • CVE-2003-0987
Product(s):
  • Apache