Search for vulnerabilities
Vulnerability details: VCID-xzrh-rhxk-aaar
Vulnerability ID VCID-xzrh-rhxk-aaar
Aliases CVE-2003-0993
Summary mod_access in Apache 1.3 before 1.3.30, when running big-endian 64-bit platforms, does not properly parse Allow/Deny rules using IP addresses without a netmask, which could allow remote attackers to bypass intended access restrictions.
Status Published
Exploitability 0.5
Weighted Severity 6.8
Risk 3.4
Affected and Fixed Packages Package Details
Weaknesses (0)
There are no known CWE.
System Score Found at
epss 0.00342 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.00342 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.00342 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.00342 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.00342 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.00342 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.00342 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.00342 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.00342 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.00342 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.00342 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.00342 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.01088 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.01088 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.01088 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.05667 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
epss 0.07124 https://api.first.org/data/v1/epss?cve=CVE-2003-0993
apache_httpd important https://httpd.apache.org/security/json/CVE-2003-0993.json
cvssv2 7.5 https://nvd.nist.gov/vuln/detail/CVE-2003-0993
Reference id Reference type URL
http://frontal2.mandriva.com/security/advisories?name=MDKSA-2004:046
http://issues.apache.org/bugzilla/show_bug.cgi?id=23850
http://marc.info/?l=apache-cvs&m=107869603013722
http://marc.info/?l=bugtraq&m=108437852004207&w=2
https://api.first.org/data/v1/epss?cve=CVE-2003-0993
http://security.gentoo.org/glsa/glsa-200405-22.xml
https://exchange.xforce.ibmcloud.com/vulnerabilities/15422
https://lists.apache.org/thread.html/r5419c9ba0951ef73a655362403d12bb8d10fab38274deb3f005816f5@%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/r5419c9ba0951ef73a655362403d12bb8d10fab38274deb3f005816f5%40%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/r5f9c22f9c28adbd9f00556059edc7b03a5d5bb71d4bb80257c0d34e4@%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/r5f9c22f9c28adbd9f00556059edc7b03a5d5bb71d4bb80257c0d34e4%40%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/r7035b7c9091c4b665a3b7205364775410646f12125d48e74e395f2ce@%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/r7035b7c9091c4b665a3b7205364775410646f12125d48e74e395f2ce%40%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920@%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/raa117ef183f0da9b3f46efbeaa66f7622bd68868a450cae4fd8ed594@%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/raa117ef183f0da9b3f46efbeaa66f7622bd68868a450cae4fd8ed594%40%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/re028d61fe612b0908595d658b9b39e74bca56f2a1ed3c5f06b5ab571@%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/re028d61fe612b0908595d658b9b39e74bca56f2a1ed3c5f06b5ab571%40%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/rf2f0f3611f937cf6cfb3b4fe4a67f69885855126110e1e3f2fb2728e@%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/rf2f0f3611f937cf6cfb3b4fe4a67f69885855126110e1e3f2fb2728e%40%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9@%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100111
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4670
http://sunsolve.sun.com/search/document.do?assetkey=1-26-101555-1
http://sunsolve.sun.com/search/document.do?assetkey=1-26-101841-1
http://sunsolve.sun.com/search/document.do?assetkey=1-26-57628-1
http://www.apacheweek.com/features/security-13
http://www.securityfocus.com/bid/9829
http://www.slackware.com/security/viewer.php?l=slackware-security&y=2004&m=slackware-security.529643
http://www.trustix.org/errata/2004/0027
cpe:2.3:a:apache:http_server:1.3:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:1.3:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:1.3.1:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:1.3.1:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:1.3.11:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:1.3.11:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:1.3.12:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:1.3.12:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:1.3.14:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:1.3.14:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:1.3.17:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:1.3.17:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:1.3.18:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:1.3.18:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:1.3.19:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:1.3.19:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:1.3.20:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:1.3.20:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:1.3.22:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:1.3.22:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:1.3.23:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:1.3.23:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:1.3.24:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:1.3.24:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:1.3.25:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:1.3.25:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:1.3.26:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:1.3.26:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:1.3.27:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:1.3.27:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:1.3.28:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:1.3.28:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:1.3.29:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:1.3.29:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:1.3.3:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:1.3.3:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:1.3.4:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:1.3.4:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:1.3.6:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:1.3.6:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:1.3.7:*:dev:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:1.3.7:*:dev:*:*:*:*:*
cpe:2.3:a:apache:http_server:1.3.9:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:http_server:1.3.9:*:*:*:*:*:*:*
CVE-2003-0993 https://httpd.apache.org/security/json/CVE-2003-0993.json
CVE-2003-0993 https://nvd.nist.gov/vuln/detail/CVE-2003-0993
No exploits are available.
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P Found at https://nvd.nist.gov/vuln/detail/CVE-2003-0993
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Exploit Prediction Scoring System (EPSS)
Percentile 0.72029
EPSS Score 0.00342
Published At Nov. 1, 2024, midnight
Date Actor Action Source VulnerableCode Version
There are no relevant records.