Apache – CVE-2003-0189

Description

Kayran has detected that the Version of Apache HTTP Server being used might be vulnerable to Denial of Service (DoS). Also known as CVE-2003-0189.

The authentication module for your Apache versions does not properly handle threads safely when using the crypt_r or crypt functions on Unix.
That will allow remote attackers to initiate a Denial of Service attack through failed Basic authentication with valid usernames and passwords when a threaded MPM is being used.

This will cause a decrease in performance and also for interruptions in the availability of resources.

Recommendation

To fix CVE-2003-0189, upgrade the version of Apache HTTP Server being used to 2.0.46 or higher.

References

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0189

< Return to all Vulnerabilities

Bug Bounties

As pirates, we all love plundering, we all love raiding, but mostly, we all love bounties, especially Bug Bounties. Let’s talk about it. Bug Bounties

Read More »

The Cloud

I’m pretty sure there isn’t a single adult in the world who hasn’t at least heard of The Cloud. Explaining “The Cloud” in 2022 may

Read More »