Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0174

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2004-0174
Last Modified 10 Sep 2008 03:25:21
Published 04 May 2004 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-0174

Summary

Apache 1.4.x before 1.3.30, and 2.0.x before 2.0.49, when using multiple listening sockets on certain platforms, allows remote attackers to cause a denial of service (blocked new connections) via a "short-lived connection on a rarely-accessed listening socket."

Vulnerable Systems

Application

  • Apache Http Server 2.0.49


References

CERT-VN - VU#132110

XF - apache-socket-starvation-dos(15540)

REDHAT - RHSA-2004:405

TRUSTIX - 2004-0017

BUGTRAQ - 20040319 [ANNOUNCE] Apache HTTP Server 2.0.49 Released (fwd)

TRUSTIX - 2004-0027

GENTOO - GLSA-200405-22

SECUNIA - 11170

SLACKWARE - SSA:2004-133

SECTRACK - 1009495

BID - 9921

MANDRAKE - MDKSA-2004:046

CONFIRM - http://www.apache.org/dist/httpd/CHANGES_1.3

SUNALERT - 57628

SUNALERT - 101555

HP - SSRT4717

BUGTRAQ - 20040512 [OpenPKG-SA-2004.021] OpenPKG Security Advisory (apache)

APPLE - APPLE-SA-2004-05-03


Last Updated: 27 May 2016 10:38:30