Apache < 2.0.55 HTTP Smuggling Vulnerability
Medium Nessus Network Monitor Plugin ID 3112
SynopsisThe remote host is vulnerable to a remote SSL flaw.
DescriptionThe remote host appears to be running a version of Apache, an open source web server. This version of Apache is vulnerable to a flaw in the way that it handles mod_ssl CRL verification callback. In order for an attacker to exploit this flaw the attacker would need to find a server that was configured to use a malicious certificate revocation list (CRL).
SolutionUpgrade to version 2.0.55 or higher.