Apache – CVE-2003-0192

Description

Kayran has detected that the version of Apache being used, may be vulnerable.
That could cause Apache to use a weaker ciphersuite or, cipher suite restrictions to be ignored.

If optional renegotiation is being used in the process of verifying client certificates, you are potentially vulnerable to CVE-2003-0192.
That means that Apache will use a weak ciphersuite instead of a strong one.
Also, cipher suite policies you’ve defined will be ignored.

Recommendation

To deal with CVE-2003-0192, update the version of the Apache being used.
Make sure its version is 2.0.47 or higher.

References

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0192

< Return to all Vulnerabilities

Bug Bounties

As pirates, we all love plundering, we all love raiding, but mostly, we all love bounties, especially Bug Bounties. Let’s talk about it. Bug Bounties

Read More »

Servers 101

Let’s have a “quick” Servers 101 Course. Courtesy of Kayran! If you’ve been on the internet for over an hour, you probably already heard of

Read More »

What is Kayran

Kayran scanner is helping all businesses, both SMBs and enterprises, to test their online assets and products for over 9000 vulnerabilities.Kayran’s mission is to make

Read More »