Apache HTTP Server 1.3.x 2.0.35-2.0.64 2.2.0-2.2.19 - Denial of Service via Range Header Overlap
Title source: llmExploitation Summary
CVE-2011-3192 has been observed exploited in the wild (reported by VulnCheck KEV, InTheWild.io).
EIP tracks 7 public exploits from researchers including kingcope, tkisason, futurezayka, including a Metasploit module auxiliary/dos/http/apache_range_dos.
AI-analyzed exploit summary This exploit targets a memory exhaustion vulnerability in Apache httpd by sending malformed HTTP Range headers. It uses multiple forks to amplify the attack, leading to remote denial of service (DoS) by exhausting system resources.
Description
The byterange filter in the Apache HTTP Server 1.3.x, 2.0.x through 2.0.64, and 2.2.x through 2.2.19 allows remote attackers to cause a denial of service (memory and CPU consumption) via a Range header that expresses multiple overlapping ranges, as exploited in the wild in August 2011, a different vulnerability than CVE-2007-0086.
Exploits (7)
exploitdb
WORKING POC
by kingcope · perldosmultiple
https://www.exploit-db.com/exploits/17696
This exploit targets a memory exhaustion vulnerability in Apache httpd by sending malformed HTTP Range headers. It uses multiple forks to amplify the attack, leading to remote denial of service (DoS) by exhausting system resources.
Classification
Working Poc 95%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target:
Apache httpd (versions affected by CVE-2014-5329)
No auth needed
Prerequisites:
Network access to the target Apache server
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026
Full analysis →
nomisec
WORKING POC
14 stars
by tkisason · poc
https://github.com/tkisason/KillApachePy
This is a Python-based proof-of-concept exploit for CVE-2011-3192, which targets a denial-of-service vulnerability in Apache HTTP Server via crafted Range headers. The script automates the attack by spawning multiple threads to send malicious requests, aiming to choke the server.
Classification
Working Poc 100%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target:
Apache HTTP Server (multiple versions)
No auth needed
Prerequisites:
Network access to the target Apache server
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026
Full analysis →
nomisec
WORKING POC
by futurezayka · dos
https://github.com/futurezayka/CVE-2011-3192
This is a functional proof-of-concept exploit for CVE-2011-3192, targeting a denial-of-service vulnerability in Apache HTTP Server via malformed Range headers. It includes both a vulnerability test and an active exploitation mode using asynchronous HTTP requests.
Classification
Working Poc 95%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target:
Apache HTTP Server 2.2.x (prior to 2.2.20)
No auth needed
Prerequisites:
Network access to the target Apache server · Python 3.7+ with aiohttp and colorama libraries
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026
Full analysis →
nomisec
STUB
by stcmjp · poc
https://github.com/stcmjp/cve-2011-3192
The repository contains only a Dockerfile with no actual exploit code or technical details. It references CVE-2011-3192 but provides no functional PoC, analysis, or vulnerability context.
Classification
Stub 90%
Attack Type
Other
Complexity
Trivial
Reliability
Theoretical
Target:
Apache HTTP Server (unspecified version)
No auth needed
Prerequisites:
Docker environment
devstral-2 · analyzed Feb 16, 2026
Full analysis →
vulncheck_xdb
WORKING POC
dos
https://gitlab.com/ntkernel/KillApachePy
This repository contains a functional Python-based exploit for CVE-2011-3192, which targets a denial-of-service (DoS) vulnerability in Apache HTTP Server via malformed Range headers. The script automates the attack by spawning multiple threads to send crafted requests, overwhelming the server.
Classification
Working Poc 100%
Attack Type
Dos
Complexity
Moderate
Reliability
Reliable
Target:
Apache HTTP Server (multiple versions)
No auth needed
Prerequisites:
Python 2.5.x-2.7.x · network access to target Apache server
MITRE ATT&CK
devstral-2 · analyzed Feb 25, 2026
Full analysis →
exploitdb
WORKING POC
cdoslinux
https://www.exploit-db.com/exploits/18221
This exploit targets CVE-2011-3192, a denial-of-service vulnerability in Apache HTTP Server. It sends malformed HTTP requests with overlapping byte ranges to trigger excessive resource consumption, causing the server to crash.
Classification
Working Poc 100%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target:
Apache HTTP Server (versions 1.3.x, 2.0.x, 2.2.x)
No auth needed
Prerequisites:
Network access to the target Apache server
MITRE ATT&CK
devstral-2 · analyzed Feb 19, 2026
Full analysis →
metasploit
WORKING POC
by Kingcope, Masashi Fujiwara · rubypoc
https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/dos/http/apache_range_dos.rb
This Metasploit module exploits CVE-2011-3192, a denial-of-service vulnerability in Apache HTTP Server versions 2.0.x through 2.0.64 and 2.2.x through 2.2.19. It triggers excessive memory and CPU consumption by sending malformed Range headers with overlapping byte ranges.
Classification
Working Poc 100%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target:
Apache HTTP Server 2.0.x-2.0.64, 2.2.x-2.2.19
No auth needed
Prerequisites:
Network access to the target Apache server
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026
Full analysis →
References (72)
Core 72
Core References
Not Applicable, Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/45606
Third Party Advisory vendor-advisory
x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2011-1369.html
Third Party Advisory vendor-advisory
x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2011-1329.html
Issue Tracking, Mailing List, Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=131731002122529&w=2
Mailing List, Third Party Advisory vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00011.html
Issue Tracking, Mailing List vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=134987041210674&w=2
Various Sources mailing-list
x_refsource_mlist
http://mail-archives.apache.org/mod_mbox/httpd-announce/201108.mbox/%3c20110824161640.122D387DD%40minotaur.apache.org%3e
Third Party Advisory vendor-advisory
x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2011-1330.html
Third Party Advisory vdb-entry
signature
x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14824
Third Party Advisory vdb-entry
signature
x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18827
Third Party Advisory vdb-entry
signature
x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14762
Mailing List mailing-list
x_refsource_mlist
https://lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb%40%3Ccvs.httpd.apache.org%3E
Mailing List mailing-list
x_refsource_mlist
https://lists.apache.org/thread.html/r9ea3538f229874c80a10af473856a81fbf5f694cd7f471cc679ba70b%40%3Ccvs.httpd.apache.org%3E
Mailing List mailing-list
x_refsource_mlist
https://lists.apache.org/thread.html/r9e8622254184645bc963a1d47c5d47f6d5a36d6f080d8d2c43b2b142%40%3Ccvs.httpd.apache.org%3E
Mailing List, Third Party Advisory vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00006.html
Third Party Advisory x_refsource_confirm
http://www.gossamer-threads.com/lists/apache/dev/401638
Broken Link, Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1025960
Various Sources mailing-list
x_refsource_mlist
http://mail-archives.apache.org/mod_mbox/httpd-dev/201108.mbox/%3cCAAPSnn2PO-d-C4nQt_TES2RRWiZr7urefhTKPWBC1b+K1Dqc7g%40mail.gmail.com%3e
Exploit, Issue Tracking, Third Party Advisory x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=732928
Third Party Advisory x_refsource_confirm
http://www.oracle.com/technetwork/topics/security/alert-cve-2011-3192-485304.html
Issue Tracking, Mailing List, Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=133477473521382&w=2
Exploit, Third Party Advisory, VDB Entry exploit
x_refsource_exploit-db
http://www.exploit-db.com/exploits/17696
Exploit, Issue Tracking, Vendor Advisory x_refsource_confirm
https://issues.apache.org/bugzilla/show_bug.cgi?id=51714
Issue Tracking, Mailing List, Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=131551295528105&w=2
Not Applicable third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/46000
Third Party Advisory x_refsource_confirm
http://www.oracle.com/technetwork/topics/security/cpuoct2011-330135.html
Broken Link x_refsource_confirm
http://blogs.oracle.com/security/entry/security_alert_for_cve_2011
Issue Tracking, Mailing List, Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=132033751509019&w=2
Third Party Advisory vendor-advisory
x_refsource_cisco
http://www.cisco.com/en/US/products/products_security_advisory09186a0080b90d73.shtml
Third Party Advisory vendor-advisory
x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-1199-1
Broken Link vendor-advisory
x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDVSA-2011:130
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/49303
Broken Link vdb-entry
x_refsource_osvdb
http://osvdb.org/74721
Third Party Advisory x_refsource_confirm
https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0
Broken Link mailing-list
x_refsource_fulldisc
http://archives.neohapsis.com/archives/fulldisclosure/2011-08/0285.html
Broken Link vendor-advisory
x_refsource_apple
http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/69396
Not Applicable third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/46126
Third Party Advisory vendor-advisory
x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2011-1245.html
Third Party Advisory x_refsource_confirm
http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html
Broken Link x_refsource_confirm
http://www.apache.org/dist/httpd/Announcement2.2.html
Third Party Advisory x_refsource_confirm
http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html
Not Applicable third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/46125
Third Party Advisory, US Government Resource third-party-advisory
x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/405811
Exploit, Mailing List, Third Party Advisory mailing-list
x_refsource_fulldisc
http://seclists.org/fulldisclosure/2011/Aug/175
Issue Tracking, Mailing List, Third Party Advisory vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=133951357207000&w=2
Third Party Advisory x_refsource_confirm
http://support.apple.com/kb/HT5002
Mailing List, Third Party Advisory vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00008.html
Mailing List, Third Party Advisory vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00010.html
Mailing List, Third Party Advisory vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00009.html
Third Party Advisory vendor-advisory
x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2011-1294.html
Broken Link vendor-advisory
x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDVSA-2013:150
Mailing List, Third Party Advisory vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00011.html
Third Party Advisory vendor-advisory
x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2011-1300.html
Not Applicable third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/45937
Mailing List mailing-list
x_refsource_mlist
https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac%40%3Ccvs.httpd.apache.org%3E
Mailing List mailing-list
x_refsource_mlist
https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79%40%3Ccvs.httpd.apache.org%3E
Mailing List mailing-list
x_refsource_mlist
https://lists.apache.org/thread.html/8d63cb8e9100f28a99429b4328e4e7cebce861d5772ac9863ba2ae6f%40%3Ccvs.httpd.apache.org%3E
Mailing List mailing-list
x_refsource_mlist
https://lists.apache.org/thread.html/f7f95ac1cd9895db2714fa3ebaa0b94d0c6df360f742a40951384a53%40%3Ccvs.httpd.apache.org%3E
Mailing List mailing-list
x_refsource_mlist
https://lists.apache.org/thread.html/r57608dc51b79102f3952ae06f54d5277b649c86d6533dcd6a7d201f7%40%3Ccvs.httpd.apache.org%3E
Mailing List mailing-list
x_refsource_mlist
https://lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc%40%3Ccvs.httpd.apache.org%3E
Mailing List mailing-list
x_refsource_mlist
https://lists.apache.org/thread.html/rfbaf647d52c1cb843e726a0933f156366a806cead84fbd430951591b%40%3Ccvs.httpd.apache.org%3E
Mailing List mailing-list
x_refsource_mlist
https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E
Mailing List mailing-list
x_refsource_mlist
https://lists.apache.org/thread.html/r688df6f16f141e966a0a47f817e559312b3da27886f59116a94b273d%40%3Ccvs.httpd.apache.org%3E
Mailing List mailing-list
x_refsource_mlist
https://lists.apache.org/thread.html/r2cb985de917e7da0848c440535f65a247754db8b2154a10089e4247b%40%3Ccvs.httpd.apache.org%3E
Mailing List mailing-list
x_refsource_mlist
https://lists.apache.org/thread.html/re2e23465bbdb17ffe109d21b4f192e6b58221cd7aa8797d530b4cd75%40%3Ccvs.httpd.apache.org%3E
Mailing List mailing-list
x_refsource_mlist
https://lists.apache.org/thread.html/r1d201e3da31a2c8aa870c8314623caef7debd74a13d0f25205e26f15%40%3Ccvs.httpd.apache.org%3E
Mailing List mailing-list
x_refsource_mlist
https://lists.apache.org/thread.html/rdca61ae990660bacb682295f2a09d34612b7bb5f457577fe17f4d064%40%3Ccvs.httpd.apache.org%3E
Mailing List mailing-list
x_refsource_mlist
https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E
Mailing List mailing-list
x_refsource_mlist
https://lists.apache.org/thread.html/r5f9c22f9c28adbd9f00556059edc7b03a5d5bb71d4bb80257c0d34e4%40%3Ccvs.httpd.apache.org%3E
Mailing List mailing-list
x_refsource_mlist
https://lists.apache.org/thread.html/rb9c9f42dafa25d2f669dac2a536a03f2575bc5ec1be6f480618aee10%40%3Ccvs.httpd.apache.org%3E
Mailing List mailing-list
x_refsource_mlist
https://lists.apache.org/thread.html/r75cbe9ea3e2114e4271bbeca7aff96117b50c1b6eb7c4772b0337c1f%40%3Ccvs.httpd.apache.org%3E
Scores
EPSS
0.9046
EPSS Percentile
99.6%
Lab Environment
COMMUNITY
SUSPICIOUS
Community Lab
+1 more repos
Details
VulnCheck KEV
2011-08-24
InTheWild.io
2021-06-06
CWE
CWE-400
Status
published
Products (11)
apache/http_server
2.0.35 - 2.0.65
canonical/ubuntu_linux
8.04
canonical/ubuntu_linux
10.04
canonical/ubuntu_linux
10.10
canonical/ubuntu_linux
11.04
opensuse/opensuse
11.3
opensuse/opensuse
11.4
suse/linux_enterprise_server
10 sp2 (3 CPE variants)
suse/linux_enterprise_server
11 sp1 (2 CPE variants)
suse/linux_enterprise_software_development_kit
10 sp3 (2 CPE variants)
... and 1 more
Published
Aug 29, 2011
Tracked Since
Feb 18, 2026