CVE-2013-0966

2013-03-15T16:55:10
ID CVE-2013-0966
Type cve
Reporter NVD
Modified 2013-03-18T12:52:40

Description

The Apple mod_hfs_apple module for the Apache HTTP Server in Apple Mac OS X before 10.8.3 does not properly handle ignorable Unicode characters, which allows remote attackers to bypass intended directory authentication requirements via a crafted pathname in a URI.