CVE-2005-3357 : Detail

CVE-2005-3357

91.46%V3
Network
2006-01-06
22h00 +00:00
2021-06-06
08h09 +00:00
CVE.org
NVD
Notifications for a CVE
Stay informed of any changes for a specific CVE.
Notifications manage

CVE Descriptions

mod_ssl in Apache 2.0 up to 2.0.55, when configured with an SSL vhost with access control and a custom error 400 error page, allows remote attackers to cause a denial of service (application crash) via a non-SSL request to an SSL port, which triggers a NULL pointer dereference.

CVE Informations

Related Weaknesses

CWE-ID Weakness Name Source
CWE-399 Category : Resource Management Errors
Weaknesses in this category are related to improper management of system resources.

Metrics

Metrics Score Severity CVSS Vector Source
V2 5.4 AV:N/AC:H/Au:N/C:N/I:N/A:C [email protected]

EPSS

EPSS is a scoring model that predicts the likelihood of a vulnerability being exploited.

EPSS Score

The EPSS model produces a probability score between 0 and 1 (0 and 100%). The higher the score, the greater the probability that a vulnerability will be exploited.

EPSS Percentile

The percentile is used to rank CVE according to their EPSS score. For example, a CVE in the 95th percentile according to its EPSS score is more likely to be exploited than 95% of other CVE. Thus, the percentile is used to compare the EPSS score of a CVE with that of other CVE.
EPSS First.org

Products Mentioned

Configuraton 0

Apache>>Http_server >> Version 2.0

Apache>>Http_server >> Version 2.0.9

Apache>>Http_server >> Version 2.0.28

Apache>>Http_server >> Version 2.0.28

Apache>>Http_server >> Version 2.0.32

Apache>>Http_server >> Version 2.0.35

Apache>>Http_server >> Version 2.0.36

Apache>>Http_server >> Version 2.0.37

Apache>>Http_server >> Version 2.0.38

Apache>>Http_server >> Version 2.0.39

Apache>>Http_server >> Version 2.0.40

Apache>>Http_server >> Version 2.0.41

Apache>>Http_server >> Version 2.0.42

Apache>>Http_server >> Version 2.0.43

Apache>>Http_server >> Version 2.0.44

Apache>>Http_server >> Version 2.0.45

Apache>>Http_server >> Version 2.0.46

Apache>>Http_server >> Version 2.0.47

Apache>>Http_server >> Version 2.0.48

Apache>>Http_server >> Version 2.0.49

Apache>>Http_server >> Version 2.0.50

Apache>>Http_server >> Version 2.0.51

Apache>>Http_server >> Version 2.0.52

Apache>>Http_server >> Version 2.0.53

Apache>>Http_server >> Version 2.0.54

Apache>>Http_server >> Version 2.0.55

References

http://www.vupen.com/english/advisories/2006/3995
Tags : vdb-entry, x_refsource_VUPEN
http://secunia.com/advisories/22992
Tags : third-party-advisory, x_refsource_SECUNIA
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102662-1
Tags : vendor-advisory, x_refsource_SUNALERT
http://secunia.com/advisories/18339
Tags : third-party-advisory, x_refsource_SECUNIA
http://www.vupen.com/english/advisories/2006/4300
Tags : vdb-entry, x_refsource_VUPEN
http://secunia.com/advisories/18340
Tags : third-party-advisory, x_refsource_SECUNIA
http://secunia.com/advisories/22523
Tags : third-party-advisory, x_refsource_SECUNIA
http://marc.info/?l=bugtraq&m=130497311408250&w=2
Tags : vendor-advisory, x_refsource_HP
http://secunia.com/advisories/23260
Tags : third-party-advisory, x_refsource_SECUNIA
http://rhn.redhat.com/errata/RHSA-2006-0159.html
Tags : vendor-advisory, x_refsource_REDHAT
http://secunia.com/advisories/29849
Tags : third-party-advisory, x_refsource_SECUNIA
http://www.vupen.com/english/advisories/2006/3920
Tags : vdb-entry, x_refsource_VUPEN
http://secunia.com/advisories/18333
Tags : third-party-advisory, x_refsource_SECUNIA
http://www.ubuntulinux.org/usn/usn-241-1
Tags : vendor-advisory, x_refsource_UBUNTU
http://www.us-cert.gov/cas/techalerts/TA08-150A.html
Tags : third-party-advisory, x_refsource_CERT
http://secunia.com/advisories/18307
Tags : third-party-advisory, x_refsource_SECUNIA
http://secunia.com/advisories/22368
Tags : third-party-advisory, x_refsource_SECUNIA
http://www.securityfocus.com/archive/1/425399/100/0/threaded
Tags : vendor-advisory, x_refsource_FEDORA
http://www.vupen.com/english/advisories/2006/4868
Tags : vdb-entry, x_refsource_VUPEN
http://secunia.com/advisories/30430
Tags : third-party-advisory, x_refsource_SECUNIA
http://www.vupen.com/english/advisories/2006/4207
Tags : vdb-entry, x_refsource_VUPEN
http://marc.info/?l=bugtraq&m=130497311408250&w=2
Tags : vendor-advisory, x_refsource_HP
http://secunia.com/advisories/21848
Tags : third-party-advisory, x_refsource_SECUNIA
http://secunia.com/advisories/18517
Tags : third-party-advisory, x_refsource_SECUNIA
http://secunia.com/advisories/22669
Tags : third-party-advisory, x_refsource_SECUNIA
http://www.trustix.org/errata/2005/0074/
Tags : vendor-advisory, x_refsource_TRUSTIX
http://secunia.com/advisories/18585
Tags : third-party-advisory, x_refsource_SECUNIA
http://www.gentoo.org/security/en/glsa/glsa-200602-03.xml
Tags : vendor-advisory, x_refsource_GENTOO
http://www.vupen.com/english/advisories/2008/1697
Tags : vdb-entry, x_refsource_VUPEN
http://secunia.com/advisories/22233
Tags : third-party-advisory, x_refsource_SECUNIA
http://secunia.com/advisories/19012
Tags : third-party-advisory, x_refsource_SECUNIA
http://secunia.com/advisories/18429
Tags : third-party-advisory, x_refsource_SECUNIA
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102640-1
Tags : vendor-advisory, x_refsource_SUNALERT
http://securitytracker.com/id?1015447
Tags : vdb-entry, x_refsource_SECTRACK
http://www.vupen.com/english/advisories/2006/0056
Tags : vdb-entry, x_refsource_VUPEN
http://secunia.com/advisories/18743
Tags : third-party-advisory, x_refsource_SECUNIA
http://www.securityfocus.com/bid/16152
Tags : vdb-entry, x_refsource_BID