Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2004-0751Apache Http Server vulnerability

8 documents8 sources
Severity
5.0MEDIUMNVD
EPSS
47.7%
top 2.29%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Apache Http Server
Timeline
PublishedOct 20
Latest updateApr 29

Description

The char_buffer_read function in the mod_ssl module for Apache 2.x, when using reverse proxying to an SSL server, allows remote attackers to cause a denial of service (segmentation fault).

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

NVDapache/http_server2.0.442.0.51

Patches

Patch: issues.apache.orgPatch: issues.apache.org

🔴Vulnerability Details

3
GHSA
GHSA-jw83-f5rc-8wmv: The char_buffer_read function in the mod_ssl module for Apache 22022-04-29
OSV
CVE-2004-0751: The char_buffer_read function in the mod_ssl module for Apache 22004-10-20
CVEList
CVE-2004-0751: The char_buffer_read function in the mod_ssl module for Apache 22004-09-10

💥Exploits & PoCs

1
Exploit-DB
Apache mod_ssl 2.0.x - Remote Denial of Service2004-09-10

📋Vendor Advisories

2
Red Hat
security flaw2004-09-15
Debian
CVE-2004-0751: apache2 - The char_buffer_read function in the mod_ssl module for Apache 2.x, when using r...2004

💬Community

1
Bugzilla
CVE-2004-0751 security flaw2018-08-16
CVE-2004-0751 — Apache Http Server vulnerability | cvebase