Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2024-27316 PoC — Apache HTTP Server: HTTP/2 DoS by memory exhaustion on endless continuation frames

Source
https://github.com/aeyesec/CVE-2024-27316_poc
Associated Vulnerability
Title:Apache HTTP Server: HTTP/2 DoS by memory exhaustion on endless continuation frames (CVE-2024-27316)
Description:HTTP/2 incoming headers exceeding the limit are temporarily buffered in nghttp2 in order to generate an informative HTTP 413 response. If a client does not stop sending headers, this leads to memory exhaustion.
Readme
# CVE-2024-27316 (HTTP/2 CONTINUATION flood) PoC

## Target server (Apache httpd)

Start
```shell
docker-compose up -d
```

Connectivity check

httpd v2.4.58 (vulnerable)
```shell
curl --http2 -i --head http://localhost:3392/
curl --http2 -i --head -k https://localhost:3393/
```

httpd v2.4.59 (fixed version)
```shell
curl --http2 -i --head http://localhost:3394/
curl --http2 -i --head -k https://localhost:3395/
```

Check resource status
```shell
docker stats cve-2024-27316_v2458 cve-2024-27316_v2459
```

Stop
```shell
docker-compose down
```

## PoC

```shell
npm ci
node poc.js
```
File Snapshot

 [4.0K]  /data/pocs/86b282ce01b533e5bd3fc79e7c1968b813df510a
├── [ 336]  docker-compose.yml
├── [4.0K]  httpd-2_4_58
│   └── [ 956]  Dockerfile
├── [4.0K]  httpd-2_4_59
│   └── [ 956]  Dockerfile
├── [ 280]  package.json
├── [4.0K]  package-lock.json
├── [5.3K]  poc.js
└── [ 591]  README.md

2 directories, 7 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →