EIP-2026-103584

PRE-CVE

Multiple HTTP Server - 'slowloris.pl' Low Bandwidth Denial of Service

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-103584. PoCs published by RSnake.

AI-analyzed exploit summary This is a Perl script implementing Slowloris, a low-bandwidth DoS tool that exhausts server resources by opening many HTTP connections and keeping them alive. It supports both HTTP and HTTPS, with configurable parameters for connection count, timeout, and threading.

Description

Multiple HTTP Server - 'slowloris.pl' Low Bandwidth Denial of Service

Exploits (1)

exploitdb WORKING POC VERIFIED

by RSnake · perldosmultiple

https://www.exploit-db.com/exploits/8976

View Code ZIP pw:eip

This is a Perl script implementing Slowloris, a low-bandwidth DoS tool that exhausts server resources by opening many HTTP connections and keeping them alive. It supports both HTTP and HTTPS, with configurable parameters for connection count, timeout, and threading.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Moderate

Reliability

Reliable

Target: Web servers (e.g., Apache, IIS)

No auth needed

Prerequisites: Network access to the target server · Perl environment with required modules (IO::Socket::INET, IO::Socket::SSL)

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026