Intrusion Prevention

Apache.mod_ssl.Connection.Abort.DoS

Description

This indicates an attack attempt against a denial-of-service vulnerability in the Apache HTTP server SSL module, mod_ssl.
The vulnerability is caused by an error when the vulnerable software handles a specially crafted encrypted communication. It allows a remote attacker to cause an Apache child process to enter an infinite loop.

Affected Products

Apache HTTP Server 2.0
Apache HTTP Server 2.0.28
Apache HTTP Server 2.0.32
Apache HTTP Server 2.0.35
Apache HTTP Server 2.0.36
Apache HTTP Server 2.0.37
Apache HTTP Server 2.0.38
Apache HTTP Server 2.0.39
Apache HTTP Server 2.0.40
Apache HTTP Server 2.0.41
Apache HTTP Server 2.0.42
Apache HTTP Server 2.0.43
Apache HTTP Server 2.0.44
Apache HTTP Server 2.0.45
Apache HTTP Server 2.0.46
Apache HTTP Server 2.0.47
Apache HTTP Server 2.0.48
Apache HTTP Server 2.0.49
Apache HTTP Server 2.0.50

Impact

Denial of service

Recommended Actions

Apply the appropriate patches or upgrade the system to the latest non-vulnerable version:
http://www.apache.org/

CVE References

CVE-2004-0748