mod_disk_cache in Apache 2.0 through 2.0.49 stores client headers, including authentication information, on the hard disk, which could allow local users to gain sensitive information.
Software | From | Fixed in |
---|---|---|
apache / http_server | 2.0 | 2.0.x |
apache / http_server | 2.0.28 | 2.0.28.x |
apache / http_server | 2.0.28-beta | 2.0.28-beta.x |
apache / http_server | 2.0.32 | 2.0.32.x |
apache / http_server | 2.0.35 | 2.0.35.x |
apache / http_server | 2.0.36 | 2.0.36.x |
apache / http_server | 2.0.37 | 2.0.37.x |
apache / http_server | 2.0.38 | 2.0.38.x |
apache / http_server | 2.0.39 | 2.0.39.x |
apache / http_server | 2.0.40 | 2.0.40.x |
apache / http_server | 2.0.41 | 2.0.41.x |
apache / http_server | 2.0.42 | 2.0.42.x |
apache / http_server | 2.0.43 | 2.0.43.x |
apache / http_server | 2.0.44 | 2.0.44.x |
apache / http_server | 2.0.45 | 2.0.45.x |
apache / http_server | 2.0.46 | 2.0.46.x |
apache / http_server | 2.0.47 | 2.0.47.x |
apache / http_server | 2.0.48 | 2.0.48.x |
apache / http_server | 2.0.49 | 2.0.49.x |
apache / http_server | 2.0.9 | 2.0.9.x |