CVE Vulnerabilities

CVE-2004-0885

Published: Nov 03, 2004 | Modified: Jun 06, 2021
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

The mod_ssl module in Apache 2.0.35 through 2.0.52, when using the SSLCipherSuite directive in directory or location context, allows remote clients to bypass intended restrictions by using any cipher suite that is allowed by the virtual host configuration.

Affected Software

Name Vendor Start Version End Version
Http_server Apache 2.0.38 2.0.38
Http_server Apache 2.0.39 2.0.39
Http_server Apache 2.0.46 2.0.46
Http_server Apache 2.0.47 2.0.47
Http_server Apache 2.0.40 2.0.40
Http_server Apache 2.0.41 2.0.41
Http_server Apache 2.0.48 2.0.48
Http_server Apache 2.0.49 2.0.49
Http_server Apache 2.0.35 2.0.35
Http_server Apache 2.0.42 2.0.42
Http_server Apache 2.0.43 2.0.43
Http_server Apache 2.0.50 2.0.50
Http_server Apache 2.0.37 2.0.37
Http_server Apache 2.0.44 2.0.44
Http_server Apache 2.0.52 2.0.52
Http_server Apache 2.0.51 2.0.51
Http_server Apache 2.0.45 2.0.45
Http_server Apache 2.0.36 2.0.36
Red Hat Enterprise Linux 2.1 RedHat apache *
Red Hat Enterprise Linux 2.1 RedHat mod_ssl *
Red Hat Enterprise Linux 3 RedHat httpd-0:2.0.46-44.ent *
Red Hat Network Proxy v 4.2 (RHEL 3) RedHat jabberd-0:2.0s10-3.37.rhn *
Red Hat Network Proxy v 4.2 (RHEL 3) RedHat rhn-apache-0:1.3.27-36.rhn.rhel3 *
Red Hat Network Proxy v 4.2 (RHEL 3) RedHat rhn-modperl-0:1.29-16.rhel3 *
Red Hat Network Proxy v 4.2 (RHEL 4) RedHat jabberd-0:2.0s10-3.38.rhn *
Red Hat Network Proxy v 4.2 (RHEL 4) RedHat rhn-apache-0:1.3.27-36.rhn.rhel4 *
Red Hat Network Proxy v 4.2 (RHEL 4) RedHat rhn-modperl-0:1.29-16.rhel4 *
Red Hat Network Satellite Server v 4.2 RedHat jabberd-0:2.0s10-3.38.rhn *
Red Hat Network Satellite Server v 4.2 RedHat java-1.4.2-ibm-0:1.4.2.10-1jpp.2.el4 *
Red Hat Network Satellite Server v 4.2 RedHat jfreechart-0:0.9.20-3.rhn *
Red Hat Network Satellite Server v 4.2 RedHat openmotif21-0:2.1.30-11.RHEL4.6 *
Red Hat Network Satellite Server v 4.2 RedHat perl-Crypt-CBC-0:2.24-1.el4 *
Red Hat Network Satellite Server v 4.2 RedHat rhn-apache-0:1.3.27-36.rhn.rhel4 *
Red Hat Network Satellite Server v 4.2 RedHat rhn-modjk-0:1.2.23-2rhn.rhel4 *
Red Hat Network Satellite Server v 4.2 RedHat rhn-modperl-0:1.29-16.rhel4 *
Red Hat Network Satellite Server v 4.2 RedHat rhn-modssl-0:2.8.12-8.rhn.10.rhel4 *
Red Hat Network Satellite Server v 4.2 RedHat tomcat5-0:5.0.30-0jpp_10rh *
Red Hat Network Satellite Server v 4.2 (RHEL3) RedHat jabberd-0:2.0s10-3.37.rhn *
Red Hat Network Satellite Server v 4.2 (RHEL3) RedHat java-1.4.2-ibm-0:1.4.2.10-1jpp.2.el3 *
Red Hat Network Satellite Server v 4.2 (RHEL3) RedHat jfreechart-0:0.9.20-3.rhn *
Red Hat Network Satellite Server v 4.2 (RHEL3) RedHat openmotif21-0:2.1.30-9.RHEL3.8 *
Red Hat Network Satellite Server v 4.2 (RHEL3) RedHat perl-Crypt-CBC-0:2.24-1.el3 *
Red Hat Network Satellite Server v 4.2 (RHEL3) RedHat rhn-apache-0:1.3.27-36.rhn.rhel3 *
Red Hat Network Satellite Server v 4.2 (RHEL3) RedHat rhn-modjk-0:1.2.23-2rhn.rhel3 *
Red Hat Network Satellite Server v 4.2 (RHEL3) RedHat rhn-modperl-0:1.29-16.rhel3 *
Red Hat Network Satellite Server v 4.2 (RHEL3) RedHat rhn-modssl-0:2.8.12-8.rhn.10.rhel3 *
Red Hat Network Satellite Server v 4.2 (RHEL3) RedHat tomcat5-0:5.0.30-0jpp_10rh *
Red Hat Network Satellite Server v 5.0 RedHat jabberd-0:2.0s10-3.38.rhn *
Red Hat Network Satellite Server v 5.0 RedHat java-1.4.2-ibm-0:1.4.2.10-1jpp.2.el4 *
Red Hat Network Satellite Server v 5.0 RedHat jfreechart-0:0.9.20-3.rhn *
Red Hat Network Satellite Server v 5.0 RedHat openmotif21-0:2.1.30-11.RHEL4.6 *
Red Hat Network Satellite Server v 5.0 RedHat perl-Crypt-CBC-0:2.24-1.el4 *
Red Hat Network Satellite Server v 5.0 RedHat rhn-apache-0:1.3.27-36.rhn.rhel4 *
Red Hat Network Satellite Server v 5.0 RedHat rhn-modjk-0:1.2.23-2rhn.rhel4 *
Red Hat Network Satellite Server v 5.0 RedHat rhn-modperl-0:1.29-16.rhel4 *
Red Hat Network Satellite Server v 5.0 RedHat rhn-modssl-0:2.8.12-8.rhn.10.rhel4 *
Red Hat Network Satellite Server v 5.0 RedHat tomcat5-0:5.0.30-0jpp_10rh *
Stronghold 4 for Red Hat Enterprise Linux RedHat stronghold-apache *
Stronghold 4 for Red Hat Enterprise Linux RedHat stronghold-mod_ssl *
Stronghold 4 for Red Hat Enterprise Linux RedHat stronghold-php *
Apache2 Ubuntu dapper *
Apache2 Ubuntu devel *
Apache2 Ubuntu edgy *
Apache2 Ubuntu feisty *
Libapache-mod-ssl Ubuntu dapper *
Libapache-mod-ssl Ubuntu edgy *
Libapache-mod-ssl Ubuntu feisty *

References