Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2005-3357HistoryDec 31, 2005 - 5:00 a.m.
CVE-2005-3357
2005-12-3105:00:00
Debian Security Bug Tracker
security-tracker.debian.org
10
5.4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:N/I:N/A:C
0.973 High
EPSS
Percentile
99.8%
mod_ssl in Apache 2.0 up to 2.0.55, when configured with an SSL vhost with access control and a custom error 400 error page, allows remote attackers to cause a denial of service (application crash) via a non-SSL request to an SSL port, which triggers a NULL pointer dereference.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | apache2 | < 2.0.55-4 | apache2_2.0.55-4_all.deb |
| Debian | 11 | all | apache2 | < 2.0.55-4 | apache2_2.0.55-4_all.deb |
| Debian | 10 | all | apache2 | < 2.0.55-4 | apache2_2.0.55-4_all.deb |
| Debian | 999 | all | apache2 | < 2.0.55-4 | apache2_2.0.55-4_all.deb |
| Debian | 13 | all | apache2 | < 2.0.55-4 | apache2_2.0.55-4_all.deb |
Related
seebug
seebug
Apache Mod_SSL可定制错误文档拒绝服务漏洞
2006-08-17 00:00:00
httpd
httpd
Apache Httpd < 2.2.2 : mod_ssl access control DoS
2005-12-05 00:00:00
Apache Httpd < 2.0.58 : mod_ssl access control DoS
2005-12-05 00:00:00
ubuntucve
ubuntucve
CVE-2005-3357
2005-12-31 00:00:00
nessus
nessus
Apache mod_ssl ssl_hook_Access Error Handling DoS
2006-01-10 00:00:00
Ubuntu 4.10 / 5.04 / 5.10 : apache2, apache vulnerabilities (USN-241-1)
2006-01-21 00:00:00
Mandrake Linux Security Advisory : apache2 (MDKSA-2006:007)
2006-01-15 00:00:00
cve
cve
CVE-2005-3357
2005-12-31 05:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200602-03 (Apache)
2008-09-24 00:00:00
SLES9: Security update for Apache 2
2009-10-10 00:00:00
Gentoo Security Advisory GLSA 200602-03 (Apache)
2008-09-24 00:00:00
gentoo
gentoo
Apache: Multiple vulnerabilities
2006-02-06 00:00:00
ubuntu
ubuntu
Apache vulnerabilities
2006-01-13 00:00:00
centos
centos
httpd, mod_ssl security update
2006-01-05 21:38:50
redhat
redhat
(RHSA-2006:0159) httpd security update
2006-01-05 00:00:00
suse
suse
cryptographic problems in apache2
2006-09-08 14:34:17
cert
cert
Apache mod_rewrite contains off-by-one error in ldap scheme handling
2006-07-28 00:00:00
securityvulns
securityvulns
About the security content of Security Update 2008-003 / Mac OS X 10.5.3
2008-05-30 00:00:00
5.4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:N/I:N/A:C
0.973 High
EPSS
Percentile
99.8%
Related for DEBIANCVE:CVE-2005-3357