5
CVSSv2

CVE-2003-0189

Published: 09/06/2003 Updated: 20/11/2024

Vulnerability Summary

The authentication module for Apache 2.0.40 up to and including 2.0.45 on Unix does not properly handle threads safely when using the crypt_r or crypt functions, which allows remote malicious users to cause a denial of service (failed Basic authentication with valid usernames and passwords) when a threaded MPM is used.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

apache http server 2.0.40

apache http server 2.0.41

apache http server 2.0.42

apache http server 2.0.43

apache http server 2.0.44

apache http server 2.0.45