Apache – CVE-2008-2364

Description

Kayran has detected that the Version of Apache HTTP Server being used is vulnerable to Allocation of Resources Without Limits or Throttling (CWE-770). Also known as CVE-2008-2364.

By abusing the ap_proxy_http_process_response function in mod_proxy_http.c in the mod_proxy module, remote HTTP servers can send large number of interim responses.
That will cause a Denial of Service (DoS) through memory consumption.

This will cause a decrease in performance and also for interruptions in the availability of resources.

Recommendation

To fix CVE-2008-2364, upgrade the version of Apache HTTP Server being used to 2.2.9 or higher.

References

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2364

https://cwe.mitre.org/data/definitions/770.html

< Return to all Vulnerabilities

Servers 101

Let’s have a “quick” Servers 101 Course. Courtesy of Kayran! If you’ve been on the internet for over an hour, you probably already heard of

Read More »

Explaining API

We’ve talked about API’s Vulnerability in here, but i feel like there’s much more to talk about and explain since this is a big and

Read More »

The Cloud

I’m pretty sure there isn’t a single adult in the world who hasn’t at least heard of The Cloud. Explaining “The Cloud” in 2022 may

Read More »