VulnerableCode Package Details - pkg:rpm/redhat/httpd@2.0.46-44?arch=ent

Search for packages

Vulnerability	Summary	Fixed by
VCID-3wbg-bxvj-1kca Aliases: CVE-2004-0885	An issue has been discovered in the mod_ssl module when configured to use the "SSLCipherSuite" directive in directory or location context. If a particular location context has been configured to require a specific set of cipher suites, then a client will be able to access that location using any cipher suite allowed by the virtual host configuration.	There are no reported fixed by versions.
VCID-en6m-ye18-97hk Aliases: CVE-2004-1834	The experimental mod_disk_cache module stored client authentication credentials for cached objects such as proxy authentication credentials and Basic Authentication passwords on disk.	There are no reported fixed by versions.
VCID-rhhj-jhej-gfcj Aliases: CVE-2004-0942	An issue was discovered where the field length limit was not enforced for certain malicious requests. This could allow a remote attacker who is able to send large amounts of data to a server the ability to cause Apache children to consume proportional amounts of memory, leading to a denial of service.	There are no reported fixed by versions.

Vulnerability

Summary

Fixed by

VCID-3wbg-bxvj-1kca
Aliases:
CVE-2004-0885

An issue has been discovered in the mod_ssl module when configured to use the "SSLCipherSuite" directive in directory or location context. If a particular location context has been configured to require a specific set of cipher suites, then a client will be able to access that location using any cipher suite allowed by the virtual host configuration.

There are no reported fixed by versions.

VCID-en6m-ye18-97hk
Aliases:
CVE-2004-1834

The experimental mod_disk_cache module stored client authentication credentials for cached objects such as proxy authentication credentials and Basic Authentication passwords on disk.

There are no reported fixed by versions.

VCID-rhhj-jhej-gfcj
Aliases:
CVE-2004-0942

An issue was discovered where the field length limit was not enforced for certain malicious requests. This could allow a remote attacker who is able to send large amounts of data to a server the ability to cause Apache children to consume proportional amounts of memory, leading to a denial of service.

There are no reported fixed by versions.

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Vulnerability

Summary

Aliases

This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-01T15:00:55.279440+00:00	RedHat Importer	Affected by	VCID-en6m-ye18-97hk	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-1834.json	38.0.0
2026-04-01T15:00:50.091579+00:00	RedHat Importer	Affected by	VCID-3wbg-bxvj-1kca	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-0885.json	38.0.0
2026-04-01T15:00:48.852804+00:00	RedHat Importer	Affected by	VCID-rhhj-jhej-gfcj	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-0942.json	38.0.0