Red Hat Customer Portal

Skip to main content

CVE-2004-0885

Impact:
Moderate
Public Date:
2004-10-05
Bugzilla:
430637: CVE-2004-0885 mod_ssl SSLCipherSuite bypass

The MITRE CVE dictionary describes this issue as:

The mod_ssl module in Apache 2.0.35 through 2.0.52, when using the "SSLCipherSuite" directive in directory or location context, allows remote clients to bypass intended restrictions by using any cipher suite that is allowed by the virtual host configuration.

Find out more about CVE-2004-0885 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Satellite Proxy v 4.2 (RHEL v.4 AS) RHSA-2008:0523 2008-06-30
Red Hat Enterprise Linux 2.1 RHSA-2004:600 2004-12-13
Red Hat Satellite 5.0 (RHEL v.4 AS) RHSA-2008:0261 2008-05-20
Red Hat Satellite v 4.2 (RHEL v.3 AS) RHSA-2008:0524 2008-06-30
Stronghold 4 for Red Hat Enterprise Linux RHSA-2005:816 2005-11-02
Red Hat Stronghold 4 RHSA-2004:653 2004-12-20
Red Hat Satellite v 4.2 (RHEL v.4 AS) RHSA-2008:0524 2008-06-30
Red Hat Satellite Proxy v 4.2 (RHEL v.3 AS) RHSA-2008:0523 2008-06-30
Red Hat Enterprise Linux 3 (httpd) RHSA-2004:562 2004-11-12

Last Modified