Apache Traffic Server CVE-2018-8005 Denial of Service Vulnerability
BID:105187
CVE-2018-8005 |Info
Apache Traffic Server CVE-2018-8005 Denial of Service Vulnerability
| Bugtraq ID: | 105187 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: |
CVE-2018-8005 |
| Remote: | Yes |
| Local: | No |
| Published: | Aug 31 2018 12:00AM |
| Updated: | Aug 31 2018 12:00AM |
| Credit: | The Apache Software Foundation |
| Vulnerable: |
Apache Traffic Server 7.1.3 Apache Traffic Server 7.1.2 Apache Traffic Server 7.1.1 Apache Traffic Server 7.0 Apache Traffic Server 6.2.2 Apache Traffic Server 6.2.1 Apache Traffic Server 6.2 Apache Traffic Server 6.1 Apache Traffic Server 6.0 |
| Not Vulnerable: |
Apache Traffic Server 7.1.4 Apache Traffic Server 6.2.3 |
Exploit / POC
Apache Traffic Server CVE-2018-8005 Denial of Service Vulnerability
Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected]
Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected]
References
Apache Traffic Server CVE-2018-8005 Denial of Service Vulnerability
References:
References:
- Apache Traffic Server Homepage (Apache Software Foundation)
- Adds a new configuration proxy.config.http.allow_multi_range (Github)
- CVE-2018-8005: Apache Traffic Server vulnerability with multi-range requests (Apache)