CVE-2007-6750

Name: CVE-2007-6750
Creator: NVD / NIST
Published: 2011-12-27T18:55:00.97+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 71.63%

Last modified Jun 16, 2026

CVE-2007-6750 is a vulnerability of currently unknown severity. The Apache HTTP Server 1.x and 2.x allows remote attackers to cause a denial of service (daemon outage) via partial HTTP requests, as demonstrated by Slowloris, related to the lack of the mod_reqtimeout module in versions before 2.2.15.. EPSS estimates a 71.63% chance of exploitation in the next 30 days.

Description

The Apache HTTP Server 1.x and 2.x allows remote attackers to cause a denial of service (daemon outage) via partial HTTP requests, as demonstrated by Slowloris, related to the lack of the mod_reqtimeout module in versions before 2.2.15.

Metrics

EPSS Probability

71.63%

99.3th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-399

Affected Software

Vendor	Product	Versions	Update
Apache	Http Server	<= 2.2.14	—
Apache	Http Server	1.0	—
Apache	Http Server	1.0.2	—
Apache	Http Server	1.0.3	—
Apache	Http Server	1.0.5	—
Apache	Http Server	1.1	—
Apache	Http Server	1.1.1	—
Apache	Http Server	1.2	—
Apache	Http Server	1.2.4	—
Apache	Http Server	1.2.5	—
Apache	Http Server	1.2.6	—
Apache	Http Server	1.2.9	—
Apache	Http Server	1.3	—
Apache	Http Server	1.3.0	—
Apache	Http Server	1.3.1	—
Apache	Http Server	1.3.1.1	—
Apache	Http Server	1.3.2	—
Apache	Http Server	1.3.3	—
Apache	Http Server	1.3.4	—
Apache	Http Server	1.3.5	—
Apache	Http Server	1.3.6	—
Apache	Http Server	1.3.7	—
Apache	Http Server	1.3.8	—
Apache	Http Server	1.3.9	—
Apache	Http Server	1.3.10	—
Apache	Http Server	1.3.11	—
Apache	Http Server	1.3.12	—
Apache	Http Server	1.3.13	—
Apache	Http Server	1.3.14	—
Apache	Http Server	1.3.15	—
Apache	Http Server	1.3.16	—
Apache	Http Server	1.3.17	—
Apache	Http Server	1.3.18	—
Apache	Http Server	1.3.19	—
Apache	Http Server	1.3.20	—
Apache	Http Server	1.3.22	—
Apache	Http Server	1.3.23	—
Apache	Http Server	1.3.24	—
Apache	Http Server	1.3.25	—
Apache	Http Server	1.3.26	—
Apache	Http Server	1.3.27	—
Apache	Http Server	1.3.28	—
Apache	Http Server	1.3.29	—
Apache	Http Server	1.3.30	—
Apache	Http Server	1.3.31	—
Apache	Http Server	1.3.32	—
Apache	Http Server	1.3.33	—
Apache	Http Server	1.3.34	—
Apache	Http Server	1.3.35	—
Apache	Http Server	1.3.36	—

Showing 50 of 115 affected configurations. See NVD for the full list.

References

Timeline

Published: Dec 27, 2011
Last Modified: Jun 16, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2007-6750?

How severe is CVE-2007-6750?

Severity scoring for CVE-2007-6750 is pending analysis. The EPSS model estimates a 71.63% probability of exploitation in the next 30 days.

How do I fix CVE-2007-6750?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2007-6750?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST