VDB
DEBIAN-CVE-2003-0192
DEBIAN-CVE-2003-0192
PUBLISHED
Apache 2 before 2.0.47, and certain versions of mod_ssl for Apache 1.3, do not properly handle "certain sequences of per-directory renegotiations and the SSLCipherSuite directive being used to upgrade from a weak ciphersuite to a strong one," which could cause Apache to use the weak ciphersuite.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:11 | apache2 | 0, 0, 0 |
| Debian:12 | apache2 | 0, 0, 0 |
| Debian:13 | apache2 | 0, 0, 0 |
| Debian:14 | apache2 | 0, 0, 0 |
Timeline
- Aug 18, 2003 CVE Published
- Apr 28, 2026 CVE Updated