Virulent

**Name of the Vulnerable Software and Affected Versions** Apache mod ssl versions prior to 2.8.19 Apache versions prior to 1.3.31 **Description** A format string issue exists in the mod proxy hook functions within the ssl engine log.c file of mod ssl. This could potentially allow remote attackers to execute arbitrary messages by including format string specifiers in certain log messages for HTTPS, which are handled by the ssl log function. **Recommendations** For Apache mod ssl versions prior to 2.8.19, update to version 2.8.19 or later. For Apache versions prior to 1.3.31, update to version 1.3.31 or later.