7.8 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
0.966 High
EPSS
Percentile
99.5%
The Apache HTTP Server is a popular web server.
A flaw was found in the way the Apache HTTP Server handled Range HTTP
headers. A remote attacker could use this flaw to cause httpd to use an
excessive amount of memory and CPU time via HTTP requests with a
specially-crafted Range header. (CVE-2011-3192)
All httpd users should upgrade to these updated packages, which contain a
backported patch to correct this issue. After installing the updated
packages, the httpd daemon must be restarted for the update to take effect.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | 6 | x86_64 | mod_ssl | < 2.2.15-9.el6_1.2 | mod_ssl-2.2.15-9.el6_1.2.x86_64.rpm |
RedHat | any | s390x | httpd-devel | < 2.0.52-48.ent | httpd-devel-2.0.52-48.ent.s390x.rpm |
RedHat | 6 | src | httpd | < 2.2.15-9.el6_1.2 | httpd-2.2.15-9.el6_1.2.src.rpm |
RedHat | any | ppc | httpd-devel | < 2.0.52-48.ent | httpd-devel-2.0.52-48.ent.ppc.rpm |
RedHat | any | i386 | httpd-suexec | < 2.0.52-48.ent | httpd-suexec-2.0.52-48.ent.i386.rpm |
RedHat | 6 | x86_64 | httpd | < 2.2.15-9.el6_1.2 | httpd-2.2.15-9.el6_1.2.x86_64.rpm |
RedHat | 6 | ppc | httpd-debuginfo | < 2.2.15-9.el6_1.2 | httpd-debuginfo-2.2.15-9.el6_1.2.ppc.rpm |
RedHat | 5 | ia64 | httpd-devel | < 2.2.3-53.el5_7.1 | httpd-devel-2.2.3-53.el5_7.1.ia64.rpm |
RedHat | 6 | s390x | mod_ssl | < 2.2.15-9.el6_1.2 | mod_ssl-2.2.15-9.el6_1.2.s390x.rpm |
RedHat | any | ppc | httpd | < 2.0.52-48.ent | httpd-2.0.52-48.ent.ppc.rpm |