QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2005-1268

Back to search

CVE-2005-1268

Published: Aug 5, 2005

Modified: Aug 7, 2024

PUBLISHED

Description

Off-by-one error in the mod_ssl Certificate Revocation List (CRL) verification callback in Apache, when configured to use a CRL, allows remote attackers to cause a denial of service (child process crash) via a CRL that causes a buffer overflow of one null byte.

VendorProductVersions

n/a

n/a

affected
n/a

References

SUSE-SR:2005:018
vendor-advisory
x_refsource_SUSE
SUSE-SA:2005:046
vendor-advisory
x_refsource_SUSE
TSLSA-2005-0059
vendor-advisory
x_refsource_TRUSTIX
oval:org.mitre.oval:def:1714
vdb-entry
signature
x_refsource_OVAL
SSRT051251
vendor-advisory
x_refsource_HP
MDKSA-2005:129
vendor-advisory
x_refsource_MANDRAKE
19185
third-party-advisory
x_refsource_SECUNIA
604
third-party-advisory
x_refsource_SREASON
oval:org.mitre.oval:def:9589
vdb-entry
signature
x_refsource_OVAL
HPSBUX02074
vendor-advisory
x_refsource_HP
oval:org.mitre.oval:def:1747
vdb-entry
signature
x_refsource_OVAL
19072
third-party-advisory
x_refsource_SECUNIA
RHSA-2005:582
vendor-advisory
x_refsource_REDHAT
14366
vdb-entry
x_refsource_BID
DSA-805
vendor-advisory
x_refsource_DEBIAN
102198
vendor-advisory
x_refsource_SUNALERT
oval:org.mitre.oval:def:1346
vdb-entry
signature
x_refsource_OVAL
ADV-2006-0789
vdb-entry
x_refsource_VUPEN

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now