Search for packages
| purl | pkg:rpm/redhat/httpd@2.0.46-46.3?arch=ent |
| Next non-vulnerable version | None. |
| Latest non-vulnerable version | None. |
| Risk | 4.5 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-pufp-t6dh-xqhv
Aliases: CVE-2005-2700 |
A flaw in the mod_ssl handling of the "SSLVerifyClient" directive. This flaw would occur if a virtual host has been configured using "SSLVerifyClient optional" and further a directive "SSLVerifyClient required" is set for a specific location. For servers configured in this fashion, an attacker may be able to access resources that should otherwise be protected, by not supplying a client certificate when connecting. | There are no reported fixed by versions. |
|
VCID-vqs2-5x99-7qfd
Aliases: CVE-2005-2728 |
A flaw in the byterange filter would cause some responses to be buffered into memory. If a server has a dynamic resource such as a CGI script or PHP script which generates a large amount of data, an attacker could send carefully crafted requests in order to consume resources, potentially leading to a Denial of Service. | There are no reported fixed by versions. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-01T15:00:53.104103+00:00 | RedHat Importer | Affected by | VCID-vqs2-5x99-7qfd | https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-2728.json | 38.0.0 |
| 2026-04-01T15:00:32.848306+00:00 | RedHat Importer | Affected by | VCID-pufp-t6dh-xqhv | https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-2700.json | 38.0.0 |