The mod_auth_shadow module 1.4 and earlier does not properly enforce the expiration of a user account and password, which could allow remote authenticated users to bypass intended access restrictions.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Mod_auth_shadow | Mod_auth_shadow | 1.0 (including) | 1.0 (including) |
Mod_auth_shadow | Mod_auth_shadow | 1.1 (including) | 1.1 (including) |
Mod_auth_shadow | Mod_auth_shadow | 1.2 (including) | 1.2 (including) |
Mod_auth_shadow | Mod_auth_shadow | 1.3 (including) | 1.3 (including) |
Mod_auth_shadow | Mod_auth_shadow | 1.4 (including) | 1.4 (including) |