CVE-2011-3192

描述

The byterange filter in the Apache HTTP Server 1.3.x, 2.0.x through 2.0.64, and 2.2.x through 2.2.19 allows remote attackers to cause a denial of service (memory and CPU consumption) via a Range header that expresses multiple overlapping ranges, as exploited in the wild in August 2011, a different vulnerability than CVE-2007-0086.

受影響套件(2)

• Debian/apache2from 0, < 2.2.19-2
• Debian/apache2from 0, < 2.2.9-10+lenny10

參考連結(1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2011-3192