Slackware Advisory SSA:2005-251-02 Mod_ssl Network Vulnerability

Summary

The remote host is missing an update as announced via advisory SSA:2005-251-02.

Solution

https://secure1.securityspace.com/smysecure/catid.html?in=SSA:2005-251-02

Insight

New mod_ssl packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, and -current to fix a security issue. If 'SSLVerifyClient optional' was configured in the global section of the config file, it could improperly override 'SSLVerifyClient require' in a per-location section.

Severity

Classification

CVE CVE-2005-2700

CVSS	Base Score: 10.0 AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Slackware Advisory SSA:2003-337-01 rsync security update
Slackware Advisory SSA:2003-253-01 security issues in pine
Slackware Advisory SSA:2005-135-01 Mozilla/Firefox
Slackware Advisory SSA:2004-236-01 Qt
Slackware Advisory SSA:2005-111-03 gaim

Slackware Advisory SSA:2005-251-02 mod_ssl

Take action and discover your vulnerabilities