Family: Web Servers --> Category: infos
Apache mod_ssl denial of service Vulnerability Scan
Vulnerability Scan Summary
Checks for version of Apache
Detailed Explanation for this Vulnerability Test
The remote host appears to be running a version of Apache 2.x which is older
There is a bug in the module mod_ssl which ships with Apache 2.0.35 to 2.0.48
which makes it vulnerable to a remote denial of service.
A possible hacker may exploit this flaw by issuing malformed SSL commands when
connect to the remote host, and may therefore use it to prevent HTTPS from
Solution : Upgrade to Apache/2.0.49 when it is available
Threat Level: Medium
Click HERE for more information and discussions on this network vulnerability scan.