Apache Range Header DoS (Apache Killer)

2011-09-23T16:38:35
ID MSF:AUXILIARY/DOS/HTTP/APACHE_RANGE_DOS
Type metasploit
Reporter Rapid7
Modified 2020-05-12T20:15:21

Description

The byterange filter in the Apache HTTP Server 2.0.x through 2.0.64, and 2.2.x through 2.2.19 allows remote attackers to cause a denial of service (memory and CPU consumption) via a Range header that expresses multiple overlapping ranges, exploit called "Apache Killer"