CVE-2004-0885
Description
The mod_ssl module in Apache 2.0.35 through 2.0.52, when using the SSLCipherSuite directive in directory or location context, allows remote clients to bypass intended restrictions by using any cipher suite that is allowed by the virtual host configuration.
Risk Information
Base Score
7.5
MODERATE
Vector
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS Score
Exploitation Probability
6.144
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Update Apache to version 2.0.53 | Windows |
| Vulnerabilities CVE-2004-0885,CVE-2004-0942,CVE-2004-1834 are fixed in Apache 2.0.53 | Windows |
| Update Apache to version 2.0.53 (For Linux) | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234