Launchpad CVE tracker

CVE 2004-0748

mod_ssl in Apache 2.0.50 and earlier allows remote attackers to cause a denial of service (CPU consumption) by aborting an SSL connection in a way that causes an Apache child process to enter an infinite loop.

See the

CVE page on Mitre.org for more details.

References

CONFIRM: https://bugzilla.redha...
GENTOO: GLSA-200409-21
MANDRAKE: MDKSA-2004:096
REDHAT: RHSA-2004:349
SUSE: SUSE-SA:2004:030
TRUSTIX: 2004-0047
AUSCERT: ESB-2004.0553
XF: apache-modssl-dos(17200)
OVAL: oval:org.mitre.oval:de...
MLIST: [httpd-cvs] 20190815 s...
MLIST: [httpd-cvs] 20190815 s...
MLIST: [httpd-cvs] 20200401 s...
MLIST: [httpd-cvs] 20200401 s...
MLIST: [httpd-cvs] 20210330 s...
MLIST: [httpd-cvs] 20210330 s...
MLIST: [httpd-cvs] 20210330 s...
MLIST: [httpd-cvs] 20210330 s...
MLIST: [httpd-cvs] 20210330 s...
MLIST: [httpd-cvs] 20210330 s...
MLIST: [httpd-cvs] 20210330 s...
MLIST: [httpd-cvs] 20210606 s...

Launchpad.net

CVE 2004-0748

Related bugs

References