CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2004-0041

The mod_auth_shadow module 1.4 and earlier does not properly enforce the expiration of a user account and password, which could allow remote authenticated users to bypass intended access restrictions.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 66.3%

CVSS Severity

CVSS v2 Score 7.5

References

http://secunia.com/advisories/10612
http://www.debian.org/security/2004/dsa-421
http://www.osvdb.org/3454
http://www.securityfocus.com/bid/9404
http://www.securitytracker.com/id?1008675
http://secunia.com/advisories/10612
http://www.debian.org/security/2004/dsa-421
http://www.osvdb.org/3454
http://www.securityfocus.com/bid/9404
http://www.securitytracker.com/id?1008675

Products affected by CVE-2004-0041

Mod Auth Shadow » Mod Auth Shadow » Version: 1.0

cpe:2.3:a:mod_auth_shadow:mod_auth_shadow:1.0
Mod Auth Shadow » Mod Auth Shadow » Version: 1.1

cpe:2.3:a:mod_auth_shadow:mod_auth_shadow:1.1
Mod Auth Shadow » Mod Auth Shadow » Version: 1.2

cpe:2.3:a:mod_auth_shadow:mod_auth_shadow:1.2
Mod Auth Shadow » Mod Auth Shadow » Version: 1.3

cpe:2.3:a:mod_auth_shadow:mod_auth_shadow:1.3
Mod Auth Shadow » Mod Auth Shadow » Version: 1.4

cpe:2.3:a:mod_auth_shadow:mod_auth_shadow:1.4

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2004-0041

Products

Pricing

Contact Us