Apache Httpd < None: Range header remote DoS

2011-08-20T00:00:00
ID HTTPD:15D329E832BC7E516FAEC91A287BD5A8
Type httpd
Reporter Apache Team Foundation
Modified 2011-08-20T00:00:00

Description

A flaw was found in the way the Apache HTTP Server handled Range HTTP headers. A remote attacker could use this flaw to cause httpd to use an excessive amount of memory and CPU time via HTTP requests with a specially-crafted Range header. This could be used in a denial of service attack.

Advisory: CVE-2011-3192.txt