← CVECheck
HomeVulnerabilities

CVE-2003-0189 — MEDIUM severity vulnerability (The authentication module for Apache 2.0.40 through 2.0.45 o)

The authentication module for Apache 2.0.40 through 2.0.45 on Unix does not properly handle threads safely when using the crypt_r or crypt functions, which allows remote attackers to cause a denial of service (failed Basic authentication with valid usernames and passwords) when a threaded MPM is used.

CVE IDCVE-2003-0189
SeverityMEDIUM
CVSS score5.0
CVSS vectorAV:N/AC:L/Au:N/C:N/I:N/A:P
CWENVD-CWE-Other
StatusModified
Published2003-06-09
Last modified2026-04-16
DescriptionThe authentication module for Apache 2.0.40 through 2.0.45 on Unix does not properly handle threads safely when using the crypt_r or crypt functions, which allows remote attackers to cause a denial of service (failed Basic authentication with valid usernames and passwords) when a threaded MPM is used.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →