Description

mod_ssl in Apache 2.0.50 and earlier allows remote attackers to cause a denial of service (CPU consumption) by aborting an SSL connection in a way that causes an Apache child process to enter an infinite loop.

Remediation

References

CVE-2004-0748

Related Vulnerabilities

Oracle Application Server CVE-2008-0340 Vulnerability (CVE-2008-0340)

MySQL CVE-2024-21237 Vulnerability (CVE-2024-21237)

Jetty CVE-2023-40167 Vulnerability (CVE-2023-40167)

Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-0215)

Oracle JRE CVE-2013-2471 Vulnerability (CVE-2013-2471)

Severity

Medium

Classification

CVE-2004-0748 CWE-835

Tags

Missing Update Known Vulnerabilities