Bypassing Access Restrictions in mod_auth_shadow Module

Bypassing Access Restrictions in mod_auth_shadow Module

CVE-2004-0041 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

The mod_auth_shadow module 1.4 and earlier does not properly enforce the expiration of a user account and password, which could allow remote authenticated users to bypass intended access restrictions.

Learn more about our User Device Pen Test.