• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Apache Mod_Access Access Control Rule Bypass Vulnerability

Apache mod_access has been reported to be prone to an access rule bypass vulnerability. When an Allow or Deny rule is specified and an IP address is used in the rule without a netmask, the affected module may fail to match the rule. As a result of this vulnerability, access controls may not be enforced correctly.