CVE-2004-1834Apache Http Server vulnerability

8 documents7 sources
Severity
2.1LOWNVD
EPSS
0.2%
top 59.49%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Apache Http Server
Timeline
PublishedMar 20
Latest updateApr 29

Description

mod_disk_cache in Apache 2.0 through 2.0.49 stores client headers, including authentication information, on the hard disk, which could allow local users to gain sensitive information.

CVSS vector

AV:L/AC:L/C:P/I:N/A:NExploitability: 3.9 | Impact: 2.9

Affected Packages1 packages

NVDapache/http_server19 versions+18

Patches

Patch: www.securityfocus.comPatch: www.securityfocus.com

🔴Vulnerability Details

3
GHSA
GHSA-q595-r7x7-fp46: mod_disk_cache in Apache 22022-04-29
CVEList
CVE-2004-1834: mod_disk_cache in Apache 22005-05-10
OSV
CVE-2004-1834: mod_disk_cache in Apache 22004-03-20

📋Vendor Advisories

2
Red Hat
security flaw2004-03-20
Debian
CVE-2004-1834: apache2 - mod_disk_cache in Apache 2.0 through 2.0.49 stores client headers, including aut...2004

💬Community

2
Bugzilla
CVE-2004-1834 security flaw2018-08-16
Bugzilla
CAN-2004-1834 mod_disk_cache information leak2005-05-11
CVE-2004-1834 — Apache Http Server vulnerability | cvebase