[LUAU] Apache DoS vulnerability

Julian Yap julian_yap at yahoo.com
Wed Aug 24 13:08:03 PDT 2011

Here is an article:

Try running the proof of concept here:

I ran it on some CentOS 5 and 6 (running httpd-2.2.15-5.el6.centos.x86_64) servers which reported no issues.  It may be the default way that RHEL/CentOS has the network set up or perhaps does not enable the modules required.  I suspect some distributions may be vulnerable with their default set up.

- Julian

More information about the LUAU mailing list