Max CVSS | 10.0 | Min CVSS | 5.0 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2005-2700 | 10.0 |
ssl_engine_kernel.c in mod_ssl before 2.8.24, when using "SSLVerifyClient optional" in the global virtual host configuration, does not properly enforce "SSLVerifyClient require" in a per-location context, which allows remote attackers to bypass inten
|
13-02-2023 - 01:16 | 06-09-2005 - 23:03 | |
CVE-2004-0885 | 7.5 |
The mod_ssl module in Apache 2.0.35 through 2.0.52, when using the "SSLCipherSuite" directive in directory or location context, allows remote clients to bypass intended restrictions by using any cipher suite that is allowed by the virtual host config
|
06-06-2021 - 11:15 | 03-11-2004 - 05:00 | |
CVE-2005-2728 | 5.0 |
The byte-range filter in Apache 2.0 before 2.0.54 allows remote attackers to cause a denial of service (memory consumption) via an HTTP header with a large Range field.
|
06-06-2021 - 11:15 | 30-08-2005 - 11:45 | |
CVE-2004-0700 | 7.5 |
Format string vulnerability in the mod_proxy hook functions function in ssl_engine_log.c in mod_ssl before 2.8.19 for Apache before 1.3.31 may allow remote attackers to execute arbitrary messages via format string specifiers in certain log messages f
|
11-07-2017 - 01:30 | 27-07-2004 - 04:00 |