CVE Vulnerabilities

CVE-2004-0748

Published: Oct 20, 2004 | Modified: Jun 06, 2021
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:N/I:N/A:P
RedHat/V2
RedHat/V3
Ubuntu

mod_ssl in Apache 2.0.50 and earlier allows remote attackers to cause a denial of service (CPU consumption) by aborting an SSL connection in a way that causes an Apache child process to enter an infinite loop.

Affected Software

Name Vendor Start Version End Version
Http_server Apache 2.0.37 2.0.37
Http_server Apache 2.0.38 2.0.38
Http_server Apache 2.0.45 2.0.45
Http_server Apache 2.0.46 2.0.46
Http_server Apache 2.0.39 2.0.39
Http_server Apache 2.0.40 2.0.40
Http_server Apache 2.0.47 2.0.47
Http_server Apache 2.0.48 2.0.48
Http_server Apache 2.0 2.0
Http_server Apache 2.0.28 2.0.28
Http_server Apache 2.0.32 2.0.32
Http_server Apache 2.0.41 2.0.41
Http_server Apache 2.0.42 2.0.42
Http_server Apache 2.0.50 2.0.50
Http_server Apache 2.0.35 2.0.35
Http_server Apache 2.0.44 2.0.44
Http_server Apache 2.0.49 2.0.49
Http_server Apache 2.0.36 2.0.36
Http_server Apache 2.0.43 2.0.43
Red Hat Enterprise Linux 3 RedHat httpd-0:2.0.46-38.ent *
Apache2 Ubuntu dapper *
Apache2 Ubuntu devel *
Apache2 Ubuntu edgy *
Apache2 Ubuntu feisty *

References