Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

F5 Networks
F5 Networksadded 2023/02/21 7:36 p.m.41 views

K5576: Authentication vulnerability in Apache mod_digest - CAN-2003-0987

Security Advisory Description Note : Versions that are not listed in this article have not been evaluated for vulnerability to this security advisory. For information about the F5 security policy regarding evaluating older and unsupported versions of F5 products, refer to K4602: Overview of the F...

7.5CVSS6.3AI score0.19648EPSS
Exploits0
SUSE CVE
SUSE CVEadded 2023/02/15 6:21 a.m.0 views

SUSE CVE-2003-0987

moddigest for Apache before 1.3.31 does not properly verify the nonce of a client response by using a AuthNonce secret...

7.5CVSS7AI score0.19648EPSS
Exploits0References5
F5 Networks
F5 Networksadded 2007/05/16 12:0 a.m.28 views

SOL5576 - Authentication vulnerability in Apache mod_digest - CAN-2003-0987

Vulnerability description moddigest for Apache before 1.3.31 does not properly verify the nonce of a client response by using a AuthNonce secret. Information about this advisory is available at the following location:...

7.5CVSS0.8AI score0.19648EPSS
Exploits0
RedHat Linux
RedHat Linuxadded 2004/12/20 4:40 p.m.1 views

httpd mod_digest nonce not verified

moddigest for Apache before 1.3.31 does not properly verify the nonce of a client response by using a AuthNonce secret...

7.5CVSS5.8AI score0.19648EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2004/08/30 12:0 a.m.52 views

GLSA-200405-22 : Apache 1.3: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200405-22 Apache 1.3: Multiple vulnerabilities On 64-bit big-endian platforms, modaccess does not properly parse Allow/Deny rules using IP addresses without a netmask which could result in failure to match certain IP addresses...

7.5CVSS6AI score0.2626EPSS
Exploits8References5
NVD
NVDadded 2004/03/03 5:0 a.m.17 views

CVE-2003-0987

moddigest for Apache before 1.3.31 does not properly verify the nonce of a client response by using a AuthNonce secret...

7.5CVSS7.5AI score0.19648EPSS
Exploits0References25
Cvelist
Cvelistadded 2004/02/03 5:0 a.m.19 views

CVE-2003-0987

moddigest for Apache before 1.3.31 does not properly verify the nonce of a client response by using a AuthNonce secret...

7.5AI score0.19648EPSS
Exploits0References25
CVE
CVEadded 2004/02/03 5:0 a.m.124 views

CVE-2003-0987

CVE-2003-0987 affects Apache’s mod_digest prior to 1.3.31, where nonce verification using an AuthNonce secret can enable a replay attack. Affected component: mod_digest in the Apache HTTP Server. Root cause: improper nonce validation allows interception and replay of Digest authentication sequenc...

7.5CVSS7.5AI score0.19648EPSS
Exploits0References25Affected Software1
Apache Httpd
Apache Httpdadded 2003/12/18 12:0 a.m.38 views

Apache Httpd < 1.3.31 : mod_digest nonce checking

moddigest does not properly verify the nonce of a client response by using a AuthNonce secret. This could allow a malicious user who is able to sniff network traffic to conduct a replay attack against a website using Digest protection. Note that moddigest implements an older version of the MD5...

7.5CVSS3.2AI score0.19648EPSS
Exploits0Affected Software1
Rows per page
Query Builder