SUSE-SA:2004:030: apache2

medium Nessus Plugin ID 14667

Synopsis

The remote host is missing a vendor-supplied security patch

Description

The remote host is missing the patch for the advisory SUSE-SA:2004:030 (apache2).

The mod_ssl apache module, as part of our apache2 package, enables the apache webserver to handle the HTTPS protocol.
Within the mod_ssl module, two Denial of Service conditions in the input filter have been found. The CVE project assigned the identifiers CVE-2004-0748 and CVE-2004-0751 to these issues.

Solution

http://www.suse.de/security/2004_30_apache2.html

Plugin Details

Severity: Medium

ID: 14667

File Name: suse_SA_2004_030.nasl

Version: 1.15

Agent: unix

Family: SuSE Local Security Checks

Published: 9/6/2004

Updated: 1/14/2021

Supported Sensors: Continuous Assessment, Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 4.4

CVSS v2

Risk Factor: Medium

Base Score: 5

Temporal Score: 4.4

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Vulnerability Information

Required KB Items: Host/SuSE/rpm-list

Exploit Available: true

Exploit Ease: No exploit is required

Reference Information

CVE: CVE-2004-0748, CVE-2004-0751

BID: 11154

Detections

Analytics