Description

mod_ssl in Apache 2.0.50 and earlier allows remote attackers to cause a denial of service (CPU consumption) by aborting an SSL connection in a way that causes an Apache child process to enter an infinite loop.

Remediation

References

CVE-2004-0748

Related Vulnerabilities

Joomla! Core 1.5.x Multiple Cross-Site Scripting Vulnerabilities (1.5.0 - 1.5.20)

WordPress 3.7.x Multiple Vulnerabilities (3.7 - 3.7.23)

WordPress Plugin Chop Slider 3 SQL Injection (3.4)

Oracle JRE CVE-2013-2449 Vulnerability (CVE-2013-2449)

YUI Library Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-4939)

Severity

Medium

Classification

CVE-2004-0748 CWE-835

Tags

Missing Update Known Vulnerabilities