Description
mod_proxy_ajp.c in the mod_proxy_ajp module in the Apache HTTP Server 2.2.11 allows remote attackers to obtain sensitive response data, intended for a client that sent an earlier POST request with no request body, via an HTTP request.
Remediation
References
Related Vulnerabilities
Python Integer Overflow or Wraparound Vulnerability (CVE-2007-4965)
OpenSSL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-3193)
Lighttpd Resource Management Errors Vulnerability (CVE-2008-0983)
WordPress Plugin Resume Submissions & Job Postings Arbitrary File Upload (2.5.1)