cpe:/a:apache:http_server:0.8.11 cpe:/a:apache:http_server:0.8.14 cpe:/a:apache:http_server:1.0.2 cpe:/a:apache:http_server:1.0.3 cpe:/a:apache:http_server:1.0.5 cpe:/a:apache:http_server:1.1 cpe:/a:apache:http_server:1.1.1 cpe:/a:apache:http_server:1.2 cpe:/a:apache:http_server:1.2.4 cpe:/a:apache:http_server:1.2.9 cpe:/a:apache:http_server:1.3.3 cpe:/a:apache:http_server:1.3.6 cpe:/a:apache:http_server:1.3.7 cpe:/a:apache:http_server:1.3.9 cpe:/a:apache:http_server:1.3.13 cpe:/a:apache:http_server:1.3.14 cpe:/a:apache:http_server:1.3.18 cpe:/a:apache:http_server:1.3.19 cpe:/a:apache:http_server:1.3.20 cpe:/a:apache:http_server:1.3.22 cpe:/a:apache:http_server:1.3.23 cpe:/a:apache:http_server:1.3.27 cpe:/a:apache:http_server:1.3.29 cpe:/a:apache:http_server:1.3.31 cpe:/a:apache:http_server:1.3.33 cpe:/a:apache:http_server:1.3.38 cpe:/a:apache:http_server:1.99 cpe:/a:apache:http_server:2.0.9 cpe:/a:apache:http_server:2.0.28 cpe:/a:apache:http_server:2.0.34:beta cpe:/a:apache:http_server:2.0.38 cpe:/a:apache:http_server:2.0.39 cpe:/a:apache:http_server:2.0.40 cpe:/a:apache:http_server:2.0.41 cpe:/a:apache:http_server:2.0.42 cpe:/a:apache:http_server:2.0.45 cpe:/a:apache:http_server:2.0.46 cpe:/a:apache:http_server:2.0.47 cpe:/a:apache:http_server:2.0.48 cpe:/a:apache:http_server:2.0.49 cpe:/a:apache:http_server:2.0.50 cpe:/a:apache:http_server:2.0.51 cpe:/a:apache:http_server:2.0.52 cpe:/a:apache:http_server:2.0.53 cpe:/a:apache:http_server:2.0.54 cpe:/a:apache:http_server:2.0.55 cpe:/a:apache:http_server:2.0.56 cpe:/a:apache:http_server:2.0.57 cpe:/a:apache:http_server:2.0.58 cpe:/a:apache:http_server:2.0.59 cpe:/a:apache:http_server:2.0.60 cpe:/a:apache:http_server:2.0.61 cpe:/a:apache:http_server:2.1 cpe:/a:apache:http_server:2.1.1 cpe:/a:apache:http_server:2.1.2 cpe:/a:apache:http_server:2.1.3 cpe:/a:apache:http_server:2.1.4 cpe:/a:apache:http_server:2.1.5 cpe:/a:apache:http_server:2.1.6 cpe:/a:apache:http_server:2.1.7 cpe:/a:apache:http_server:2.1.8 cpe:/a:apache:http_server:2.1.9 cpe:/a:apache:http_server:2.2 cpe:/a:apache:http_server:2.2.0 cpe:/a:apache:http_server:2.2.1 cpe:/a:apache:http_server:2.2.2 cpe:/a:apache:http_server:2.2.3 cpe:/a:apache:http_server:2.2.4 cpe:/a:apache:http_server:2.2.5 cpe:/a:apache:http_server:2.2.6 cpe:/a:apache:http_server:2.2.7 cpe:/a:apache:http_server:2.2.8 cpe:/a:apache:http_server:2.2.9 cpe:/a:apache:http_server:2.2.10 cpe:/a:apache:http_server:2.2.11 CVE-2009-1891 2009-07-10T11:30:00.187-04:00 2017-09-28T21:34:38.373-04:00 7.1 NETWORK MEDIUM NONE NONE NONE COMPLETE http://nvd.nist.gov 2009-07-10T11:48:00.000-04:00 SECTRACK 1022529 BUGTRAQ 20091113 rPSA-2009-0142-2 httpd mod_ssl SECUNIA 35721 SECUNIA 35781 SECUNIA 35793 SECUNIA 35865 SECUNIA 37152 SECUNIA 37221 OSVDB 55782 VUPEN ADV-2009-1841 VUPEN ADV-2009-3184 APPLE APPLE-SA-2009-11-09-1 DEBIAN DSA-1834 FEDORA FEDORA-2009-8812 GENTOO GLSA-200907-04 HP HPSBOV02683 HP HPSBUX02612 MANDRIVA MDVSA-2009:149 AIXAPAR PK91361 AIXAPAR PK99480 REDHAT RHSA-2009:1148 REDHAT RHSA-2009:1156 HP SSRT090208 HP SSRT100345 SUSE SUSE-SA:2009:050 UBUNTU USN-802-1 MLIST [apache-httpd-dev] 20090628 mod_deflate DoS MLIST [apache-httpd-dev] 20090703 Re: mod_deflate DoS MISC http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=534712 CONFIRM http://support.apple.com/kb/HT3937 CONFIRM http://wiki.rpath.com/Advisories:rPSA-2009-0142 CONFIRM http://wiki.rpath.com/wiki/Advisories:rPSA-2009-0142 CONFIRM https://bugzilla.redhat.com/show_bug.cgi?id=509125 The mod_deflate module in Apache httpd 2.2.11 and earlier compresses large files until completion even after the associated network connection is closed, which allows remote attackers to cause a denial of service (CPU consumption).