CVE-2013-4566

Priority
Description
mod_nss 1.0.8 and earlier, when NSSVerifyClient is set to none for the
server/vhost context, does not enforce the NSSVerifyClient setting in the
directory context, which allows remote attackers to bypass intended access
restrictions.
More Information

Updated: 2019-01-14 21:14:59 UTC (commit 51f9b73af244ba86b9321e46e526586c25a8e060)