Apache Basic Authentication Module Valid User Login Denial Of Service Vulnerability

Bugtraq ID: 7725
Class: Design Error
CVE: CVE-2003-0189
Remote: Yes
Local: No
Published: May 28 2003 12:00AM
Updated: Jul 11 2009 10:06PM
Credit: Discovery of this issue is credited to John Hughes <john.hughes@entegrity.com>.
Vulnerable: Redhat mod_ssl-2.0.40-8.i386.rpm
+ Redhat Linux 8.0
Redhat mod_ssl-2.0.40-21.i386.rpm
+ Redhat Linux 9.0 i386
 Redhat httpd-manual-2.0.40-8.i386.rpm
+ Redhat Linux 8.0
Redhat httpd-manual-2.0.40-21.i386.rpm
+ Redhat Linux 9.0 i386
 Redhat httpd-devel-2.0.40-8.i386.rpm
+ Redhat Linux 8.0
Redhat httpd-devel-2.0.40-21.i386.rpm
+ Redhat Linux 9.0 i386
 Redhat httpd-2.0.40-8.i386.rpm
+ Redhat Linux 8.0
Redhat httpd-2.0.40-21.i386.rpm
+ Redhat Linux 9.0 i386
 HP HP-UX Apache-Based Web Server 1.0.1 .01
- HP HP-UX 11.22
- HP HP-UX 11.20
- HP HP-UX 11.11
- HP HP-UX 11.0
HP HP-UX Apache-Based Web Server 1.0 .05.01
HP HP-UX Apache-Based Web Server 1.0 .04.01
HP HP-UX Apache-Based Web Server 1.0 .03.01
HP HP-UX Apache-Based Web Server 1.0 .02.01
HP HP-UX Apache-Based Web Server 1.0 .01
- HP HP-UX 11.22
- HP HP-UX 11.20
- HP HP-UX 11.11
- HP HP-UX 11.0
Apache Apache 2.0.45
- Apple Mac OS X 10.2.6
- Apple Mac OS X 10.2.5
- Apple Mac OS X 10.2.4
- Apple Mac OS X 10.2.3
- Apple Mac OS X 10.2.2
- Apple Mac OS X 10.2.1
- Apple Mac OS X 10.2
- Apple Mac OS X 10.1.5
- Apple Mac OS X 10.1.4
- Apple Mac OS X 10.1.3
- Apple Mac OS X 10.1.2
- Apple Mac OS X 10.1.1
- Apple Mac OS X 10.1
- Apple Mac OS X 10.1
- Apple Mac OS X 10.0.4
- Apple Mac OS X 10.0.3
- Apple Mac OS X 10.0.2
- Apple Mac OS X 10.0.1
- Apple Mac OS X 10.0
Apache Apache 2.0.44
Apache Apache 2.0.43
Apache Apache 2.0.42
+ Gentoo Linux 1.4 _rc1
 + Gentoo Linux 1.2
Apache Apache 2.0.41
Apache Apache 2.0.40
+ Redhat Linux 9.0 i386
 + Redhat Linux 8.0
+ Terra Soft Solutions Yellow Dog Linux 3.0
Not Vulnerable: HP HP-UX Apache-Based Web Server 1.0 .07.01
HP HP-UX Apache-Based Web Server 1.0 .06.01
Apache Apache 2.0.46
+ Redhat Desktop 3.0
+ Redhat Enterprise Linux AS 3
 + Redhat Enterprise Linux ES 3
 + Redhat Enterprise Linux WS 3
 + Trustix Secure Linux 2.0


 

Privacy Statement
Copyright 2010, SecurityFocus