|
Family: Denial of Service --> Category: denial
Apache mod_ssl Error Document Denial of Service Vulnerability Vulnerability Scan
Vulnerability Scan Summary Checks for error document denial of service vulnerability in Apache mod_ssl
Detailed Explanation for this Vulnerability Test
Synopsis :
The remote web server is affected by a denial of service flaw.
Description :
The installed version of Apache with mod_ssl on the remote host
appears susceptible to a remote denial of service flaw under certain
atypical configurations. A remote attacker may be able to exploit
this issue to crash individual child processes or even the entire
server, thereby denying service to legitimate users.
See also :
http://issues.apache.org/bugzilla/show_bug.cgi?id=37791
Solution :
Update the Apache configuration to use ''SSLRequire' whenever
'SSLCipherSuite' is used.
Threat Level:
Low / CVSS Base Score : 2.7
(AV:R/AC:H/Au:NR/C:N/I:N/A:C/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|