CVE-2011-3192

Priority
Description
The byterange filter in the Apache HTTP Server 1.3.x, 2.0.x through 2.0.64,
and 2.2.x through 2.2.19 allows remote attackers to cause a denial of
service (memory and CPU consumption) via a Range header that expresses
multiple overlapping ranges, as exploited in the wild in August 2011, a
different vulnerability than CVE-2007-0086.
Assigned-to
sbeattie
Notes
jdstrandregression on streaming videos from apache in Debian Bug #639825
sbeattieam unable to reproduce the streaming videos regression with
mplayer from oneiric/amd64, natty/amd64, maverick/i386 and
hardy/amd64 against a maverick/i386 server with the pending
apache update installed.
More Information

Updated: 2019-12-05 20:57:45 UTC (commit 0aa5e7c87c8b55d2ec5c7f4ca1179cf75de91961)