Vulnerabilities

CVE-2003-0192

by Fred · 10/07/2003

Apache 2 before 2.0.47, and certain versions of mod_ssl for Apache 1.3, do not properly handle "certain sequences of per-directory renegotiations and the SSLCipherSuite directive being used to upgrade from a weak ciphersuite to a strong one," which could cause Apache to use the weak ciphersuite.

Date published : 2003-07-10

http://marc.info/?l=bugtraq&m=105776593602600&w=2

http://www.mandriva.com/security/advisories?name=MDKSA-2003:075

Similar

Tags: Cybersecurity Alert