7.8 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
0.966 High
EPSS
Percentile
99.5%
The Apache HTTP Server is a popular web server.
A flaw was found in the way the Apache HTTP Server handled Range HTTP
headers. A remote attacker could use this flaw to cause httpd to use an
excessive amount of memory and CPU time via HTTP requests with a
specially-crafted Range header. (CVE-2011-3192)
All httpd users should upgrade to these updated packages, which contain a
backported patch to correct this issue. After installing the updated
packages, the httpd daemon must be restarted for the update to take effect.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | any | i386 | mod_ssl | <Β 2.0.46-78.ent | mod_ssl-2.0.46-78.ent.i386.rpm |
RedHat | any | i386 | httpd | <Β 2.0.46-78.ent | httpd-2.0.46-78.ent.i386.rpm |
RedHat | any | i386 | httpd-devel | <Β 2.0.46-78.ent | httpd-devel-2.0.46-78.ent.i386.rpm |