2004-02-03 05:00:00
mitre
PUBLISHED
mod_digest for Apache before 1.3.31 does not properly verify the nonce of a client response by using a AuthNonce secret.