CVE-2007-6750

Apache HTTP Server < 2.2.15 - Denial of Service via Partial HTTP Requests

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-6750. PoCs published by sarjanpatel22.

AI-analyzed exploit summary This repository documents a blue-team SIEM lab setup using Wazuh 4.7.5 to detect simulated attacks, including a Slowloris DoS (CVE-2007-6750) against Apache. The report provides technical details on attack simulation, detection metrics, and mitigation recommendations, but does not contain exploit code.

Description

The Apache HTTP Server 1.x and 2.x allows remote attackers to cause a denial of service (daemon outage) via partial HTTP requests, as demonstrated by Slowloris, related to the lack of the mod_reqtimeout module in versions before 2.2.15.

Exploits (1)

nomisec WRITEUP
by sarjanpatel22 · poc
https://github.com/sarjanpatel22/siem-threat-detection-lab

This repository documents a blue-team SIEM lab setup using Wazuh 4.7.5 to detect simulated attacks, including a Slowloris DoS (CVE-2007-6750) against Apache. The report provides technical details on attack simulation, detection metrics, and mitigation recommendations, but does not contain exploit code.

Classification
Writeup 98%
Attack Type
Dos
Complexity
Moderate
Reliability
Reliable
Target: Apache (vulnerable to CVE-2007-6750)
No auth needed
Prerequisites: Apache server without mod_reqtimeout enabled · Network access to target · slowhttptest tool for simulation
mistral-large-3 · analyzed Jul 03, 2026 Full analysis →

References (11)

Core 11
Core References
Mailing List vendor-advisory x_refsource_hp
http://marc.info/?l=bugtraq&m=136612293908376&w=2
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1038144
Various Sources x_refsource_misc
http://ha.ckers.org/slowloris/
Third Party Advisory mailing-list x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/2007-01/0229.html
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19481
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/72345
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/21865

Scores

EPSS 0.7163
EPSS Percentile 99.3%

Details

CWE
CWE-399
Status published
Products (50)
apache/http_server 1.0
apache/http_server 1.0.2
apache/http_server 1.0.3
apache/http_server 1.0.5
apache/http_server 1.1
apache/http_server 1.1.1
apache/http_server 1.2
apache/http_server 1.2.4
apache/http_server 1.2.5
apache/http_server 1.2.6
... and 40 more
Published Dec 27, 2011
Tracked Since Feb 18, 2026