Description
fcgid_spawn_ctl.c in the mod_fcgid module 2.3.6 for the Apache HTTP Server does not recognize the FcgidMaxProcessesPerClass directive for a virtual host, which makes it easier for remote attackers to cause a denial of service (memory consumption) via a series of HTTP requests that triggers a process count higher than the intended limit.
Remediation
References
Related Vulnerabilities
WordPress Plugin FireStorm Professional Real Estate 'id' Parameter SQL Injection (2.06.03)
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-1606)
WordPress Plugin Invite Anyone Security Bypass (1.3.14)
MySQL CVE-2014-2484 Vulnerability (CVE-2014-2484)
phpMyAdmin 7PK - Security Features Vulnerability (CVE-2016-9850)