CVE-2007-6750: The Apache HTTP Server 1.x and 2.x allows remote attackers to cause a denial of service (daemon outage) via partial HTTP requests, as demonstrated by…

medium5CVSS 3.1

AVNACLAuNCNINAP

The Apache HTTP Server 1.x and 2.x allows remote attackers to cause a denial of service (daemon outage) via partial HTTP requests, as demonstrated by Slowloris, related to the lack of the mod_reqtimeout module in versions before 2.2.15.

Affected

117 ranges· showing 25

Vendor	Product	Version range	Fixed in
apache	http_server	<= 2.2.14	—
apache	http_server	—	—
apache	http_server	—	—
apache	http_server	—	—
apache	http_server	—	—
apache	http_server	—	—
apache	http_server	—	—
apache	http_server	—	—
apache	http_server	—	—
apache	http_server	—	—
apache	http_server	—	—
apache	http_server	—	—
apache	http_server	—	—
apache	http_server	—	—
apache	http_server	—	—
apache	http_server	—	—
apache	http_server	—	—
apache	http_server	—	—
apache	http_server	—	—
apache	http_server	—	—
apache	http_server	—	—
apache	http_server	—	—
apache	http_server	—	—
apache	http_server	—	—
apache	http_server	—	—

CVSS provenance

nvd5.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P

osv5.0MEDIUM