CVE-2017-7679

CRITICAL

Apache httpd <2.2.33, <2.4.26 - Buffer Overflow

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 3 public exploits for CVE-2017-7679. PoCs published by Al-Lord0x, vaishakhcv, winterwolf32.

AI-analyzed exploit summary This is a Python-based exploit for CVE-2017-7679, targeting Apache servers with a memory leak and DoS vulnerability. It uses crafted Content-Type headers to trigger the vulnerability and includes multi-threaded exploitation for impact assessment.

Description

In Apache httpd 2.2.x before 2.2.33 and 2.4.x before 2.4.26, mod_mime can read one byte past the end of a buffer when sending a malicious Content-Type response header.

Exploits (3)

nomisec WORKING POC 1 stars
by Al-Lord0x · poc
https://github.com/Al-Lord0x/CVE-2017-7679

This is a Python-based exploit for CVE-2017-7679, targeting Apache servers with a memory leak and DoS vulnerability. It uses crafted Content-Type headers to trigger the vulnerability and includes multi-threaded exploitation for impact assessment.

Classification
Working Poc 95%
Attack Type
Dos | Info Leak
Complexity
Moderate
Reliability
Reliable
Target: Apache HTTP Server (versions affected by CVE-2017-7679)
No auth needed
Prerequisites: Network access to the target Apache server · Python 3.x environment with requests library
devstral-2 · analyzed Feb 16, 2026 Full analysis →
github WORKING POC 1 stars
by vaishakhcv · perlpoc
https://github.com/vaishakhcv/CVE-exploits/tree/master/CVE-2017-7679

This Perl script exploits CVE-2017-7679, a buffer overflow vulnerability in Apache httpd's mod_mime, by sending a malicious Content-Type header to trigger a denial-of-service (DoS) condition. It automates the creation and deployment of a custom Apache module to test the vulnerability.

Classification
Working Poc 95%
Attack Type
Dos
Complexity
Moderate
Reliability
Reliable
Target: Apache httpd 2.2.x before 2.2.33 and 2.4.x before 2.4.26
No auth needed
Prerequisites: Apache httpd installation path · APXS tool for module compilation · Perl with LWP::UserAgent and HTTP::Request modules
devstral-2 · analyzed Feb 27, 2026 Full analysis →
github WORKING POC
by winterwolf32 · perlpoc
https://github.com/winterwolf32/CVE_Exploits-/tree/master/CVE-2017-7679

This Perl script exploits CVE-2017-7679, a buffer overflow vulnerability in Apache httpd's mod_mime, by sending a malicious Content-Type header to trigger a denial-of-service (DoS) condition. It automates the creation and deployment of a custom Apache module to test the vulnerability.

Classification
Working Poc 95%
Attack Type
Dos
Complexity
Moderate
Reliability
Reliable
Target: Apache httpd 2.2.x before 2.2.33 and 2.4.x before 2.4.26
No auth needed
Prerequisites: Apache installation path · ability to compile and load custom Apache modules
devstral-2 · analyzed Feb 27, 2026 Full analysis →

References (40)

Core 40
Core References
Third Party Advisory x_refsource_confirm
https://support.apple.com/HT208221
Third Party Advisory vendor-advisory x_refsource_redhat
https://access.redhat.com/errata/RHSA-2017:2479
Third Party Advisory vendor-advisory x_refsource_redhat
https://access.redhat.com/errata/RHSA-2017:2483
Exploit, Third Party Advisory x_refsource_misc
https://github.com/gottburgm/Exploits/tree/master/CVE-2017-7679
Vendor Advisory x_refsource_confirm
https://security.netapp.com/advisory/ntap-20180601-0002/
Mitigation, Third Party Advisory x_refsource_confirm
https://www.nomachine.com/SU08O00185
Third Party Advisory vendor-advisory x_refsource_redhat
https://access.redhat.com/errata/RHSA-2017:3475
Third Party Advisory vendor-advisory x_refsource_redhat
https://access.redhat.com/errata/RHSA-2017:3195
Patch, Third Party Advisory x_refsource_confirm
http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/99170
Third Party Advisory vendor-advisory x_refsource_redhat
https://access.redhat.com/errata/RHSA-2017:3476
Third Party Advisory vendor-advisory x_refsource_redhat
https://access.redhat.com/errata/RHSA-2017:3477
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2017/dsa-3896
Third Party Advisory vendor-advisory x_refsource_redhat
https://access.redhat.com/errata/RHSA-2017:3194
Third Party Advisory vendor-advisory x_refsource_redhat
https://access.redhat.com/errata/RHSA-2017:3193
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1038711
Third Party Advisory vendor-advisory x_refsource_gentoo
https://security.gentoo.org/glsa/201710-32
Third Party Advisory vendor-advisory x_refsource_redhat
https://access.redhat.com/errata/RHSA-2017:2478
Third Party Advisory x_refsource_confirm
https://www.tenable.com/security/tns-2019-09

Scores

CVSS v3 9.8
EPSS 0.3934
EPSS Percentile 98.4%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-119 CWE-126
Status published
Products (3)
apache/http_server 2.2.0 - 2.2.33
Apache Software Foundation/Apache HTTP Server 2.2.0 to 2.2.32
Apache Software Foundation/Apache HTTP Server 2.4.0 to 2.4.25
Published Jun 20, 2017
Tracked Since Feb 18, 2026