← Back

CVE-2004-1082

nvd nist
Published: Feb 3, 2004Modified: Apr 16, 2026

JSON object

Loading...
7.5
Vector
AV:N/AC:L/Au:N/C:P/I:P/A:P
Exploitability: 10.0 / Impact: 6.4
Source: NVD

Description

mod_digest_apple for Apache 1.3.31 and 1.3.32 on Mac OS X Server does not properly verify the nonce of a client response, which allows remote attackers to replay credentials.

Affected (47)

Show all products
Apache: Http Server · Apple: Apache Mod Digest Apple · Avaya: Communication Manager, Intuity Audix Lx, Mn100, Modular Messaging Message Storage Server, Network Routing · Hp: Virtualvault, Webproxy · Ibm: Http Server · Openbsd: Openbsd · Sco: Openserver · Sun: Solaris, Sunos
Apache
1 product
Http Server
Apple
1 product
Apache Mod Digest Apple
Avaya
5 products
Communication Manager
Intuity Audix Lx
Mn100
Modular Messaging Message Storage Server
Network Routing
Hp
2 products
Virtualvault
Webproxy
Ibm
1 product
Http Server
Openbsd
1 product
Openbsd
Sco
1 product
Openserver
Sun
2 products
Solaris
Sunos
Configuration A
34 vulnerable
Vulnerable SoftwareAffected Versions
Apache
Http Server
Version 1.3.11
Http Server
Version 1.3.12
Http Server
Version 1.3.14
Http Server
Version 1.3.17
Http Server
Version 1.3.18
Http Server
Version 1.3.19
Http Server
Version 1.3.1
Http Server
Version 1.3.20
Http Server
Version 1.3.22
Http Server
Version 1.3.23
Http Server
Version 1.3.24
Http Server
Version 1.3.25
Http Server
Version 1.3.26
Http Server
Version 1.3.27
Http Server
Version 1.3.28
Http Server
Version 1.3.29
Http Server
Version 1.3.3
Http Server
Version 1.3.4
Http Server
Version 1.3.6
Http Server
Version 1.3.7
Http Server
Version 1.3.9
Http Server
Version 1.3
Apache Mod Digest Apple
All versions
Avaya
Communication Manager
Version 1.1
Communication Manager
Version 1.3.1
Communication Manager
Version 2.0.1
Communication Manager
Version 2.0
Intuity Audix Lx
All versions
Hp
Virtualvault
Version 4.5
Virtualvault
Version 4.6
Virtualvault
Version 4.7
Hp
Webproxy
Version a.02.00
Webproxy
Version a.02.10
Http Server
Version 1.3.19
Configuration B
13 vulnerable
Vulnerable SoftwareAffected Versions
Mn100
All versions
Avaya
Modular Messaging Message Storage Server
Version 1.1
Modular Messaging Message Storage Server
Version 2.0
Network Routing
All versions
Openbsd
Openbsd
Version 3.4
Openbsd
Version 3.5
Openbsd
Version current
Sco
Openserver
Version 5.0.6
Openserver
Version 5.0.7
Sun
Solaris
Version 8.0
Solaris
Version 9.0
Solaris
Version 9.0
Sunos
Version 5.8

References (10)

Source: cve@mitre.org
PatchVendor Advisory
Source: cve@mitre.org
PatchVendor Advisory
Source: cve@mitre.org
PatchVendor Advisory
Source: cve@mitre.org
PatchVendor Advisory
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.