Apache 1.3 mod_access IP Address Parsing Vulnerability

Apache 1.3 mod_access IP Address Parsing Vulnerability

CVE-2003-0993 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

mod_access in Apache 1.3 before 1.3.30, when running big-endian 64-bit platforms, does not properly parse Allow/Deny rules using IP addresses without a netmask, which could allow remote attackers to bypass intended access restrictions.

Learn more about our Cis Benchmark Audit For Apache Http Server.