PublicDate: 2005-12-31 05:00:00 UTC
Candidate: CVE-2005-3357
References:
 https://ubuntu.com/security/notices/USN-241-1
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3357
Description:
 mod_ssl in Apache 2.0 up to 2.0.55, when configured with an SSL vhost with
 access control and a custom error 400 error page, allows remote attackers
 to cause a denial of service (application crash) via a non-SSL request to
 an SSL port, which triggers a NULL pointer dereference.
Ubuntu-Description:
Notes:
Priority: untriaged
Discovered-by:
Assigned-to:
CVSS:

Bugs:
dapper_apache2: released (2.0.55-4ubuntu2.2)
edgy_apache2: released (2.0.55-4ubuntu4.1)
feisty_apache2: released (2.2.3-3.2ubuntu0.1)
devel_apache2: released (2.2.4-3)
upstream_apache2: needs-triage