Description

Apache 2 before 2.0.47, and certain versions of mod_ssl for Apache 1.3, do not properly handle "certain sequences of per-directory renegotiations and the SSLCipherSuite directive being used to upgrade from a weak ciphersuite to a strong one," which could cause Apache to use the weak ciphersuite.

Remediation

References

CVE-2003-0192

Related Vulnerabilities

PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2011-0708)

WordPress Plugin WordPress Comment Rating Cross-Site Scripting (1.5.3)

MySQL CVE-2016-0650 Vulnerability (CVE-2016-0650)

WordPress Plugin Feed Them Social-for Twitter feed, Youtube and more Multiple Vulnerabilities (2.9.9)

WordPress Plugin WP Instagram-Best Instagram Feeds Cross-Site Scripting (1.0.19)

Severity

Medium

Classification

CVE-2003-0192

Tags

Missing Update Known Vulnerabilities