On August 24th, the Apache team issued a security bulletin about a denial of service vulnerability related to malicious usage of range headers. The bulletin (updated on Aug 26) can be found at:
There is not yet a software update for Apache, but the bulletin outlines five options to mitigate the attack until a full software fix is available.
Has anyone tried any of these mitigation options with a WordPress installation? Any sense of whether any of them would cause problems with WordPress?
- The topic ‘Any WordPress issues with 20110824 Apache range header security vulnerability?’ is closed to new replies.