mod_disk_cache in Apache 2.0 through 2.0.49 stores client headers, including authentication information, on the hard disk, which could allow local users to gain sensitive information.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Http_server | Apache | 2.0 (including) | 2.0 (including) |
| Http_server | Apache | 2.0.9 (including) | 2.0.9 (including) |
| Http_server | Apache | 2.0.28 (including) | 2.0.28 (including) |
| Http_server | Apache | 2.0.28-beta (including) | 2.0.28-beta (including) |
| Http_server | Apache | 2.0.32 (including) | 2.0.32 (including) |
| Http_server | Apache | 2.0.35 (including) | 2.0.35 (including) |
| Http_server | Apache | 2.0.36 (including) | 2.0.36 (including) |
| Http_server | Apache | 2.0.37 (including) | 2.0.37 (including) |
| Http_server | Apache | 2.0.38 (including) | 2.0.38 (including) |
| Http_server | Apache | 2.0.39 (including) | 2.0.39 (including) |
| Http_server | Apache | 2.0.40 (including) | 2.0.40 (including) |
| Http_server | Apache | 2.0.41 (including) | 2.0.41 (including) |
| Http_server | Apache | 2.0.42 (including) | 2.0.42 (including) |
| Http_server | Apache | 2.0.43 (including) | 2.0.43 (including) |
| Http_server | Apache | 2.0.44 (including) | 2.0.44 (including) |
| Http_server | Apache | 2.0.45 (including) | 2.0.45 (including) |
| Http_server | Apache | 2.0.46 (including) | 2.0.46 (including) |
| Http_server | Apache | 2.0.47 (including) | 2.0.47 (including) |
| Http_server | Apache | 2.0.48 (including) | 2.0.48 (including) |
| Http_server | Apache | 2.0.49 (including) | 2.0.49 (including) |
| Red Hat Enterprise Linux 3 | RedHat | httpd-0:2.0.46-44.ent | * |