CVE-2013-4566 in Enterprise Linuxinfo

Summary

mod_nss 1.0.8 and earlier, when NSSVerifyClient is set to none for the server/vhost context, does not enforce the NSSVerifyClient setting in the directory context, which allows remote attackers to bypass intended access restrictions.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservation

06/12/2013

Disclosure

12/12/2013

Status

Confirmed

Entries

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerability	CWE	Exp	Cou	CVE
65734	Red Hat Enterprise Linux mod_nss access control	264	Not defined	Not defined	CVE-2013-4566

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

MITRE
NVD
CVE Details

◂ PreviousOverviewNext ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!