Apache HTTP Server Project Information for VU#744929

mod_ssl fails to properly enforce client certificates authentication



Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Vendor References



The Apache HTTP Server Project distributes a version of mod_ssl with Apache 2.0. According to Apache's changelog, this issue has been resolved in Apache 2.0.55.

If you have feedback, comments, or additional information about this vulnerability, please send us email.