This script is Copyright (C) 2012-2014 Tenable Network Security, Inc.
The remote Scientific Linux host is missing one or more security
The Apache HTTP Server is a popular web server.
A flaw was found in the way the Apache HTTP Server handled Range HTTP
headers. A remote attacker could use this flaw to cause httpd to use
an excessive amount of memory and CPU time via HTTP requests with a
specially crafted Range header. (CVE-2011-3192)
All httpd users should upgrade to these updated packages, which
contain a backported patch to correct this issue. After installing the
updated packages, the httpd daemon must be restarted for the update to
See also :
Update the affected packages.
Risk factor :
High / CVSS Base Score : 7.8
Public Exploit Available : true
Family: Scientific Linux Local Security Checks
Nessus Plugin ID: 61126 ()
CVE ID: CVE-2011-3192