Description

The mod_proxy_ajp module in the Apache HTTP Server 2.2.12 through 2.2.21 places a worker node into an error state upon detection of a long request-processing time, which allows remote attackers to cause a denial of service (worker consumption) via an expensive request.

Remediation

References

CVE-2012-4557

Related Vulnerabilities

WordPress Plugin Contact Form for WordPress-Ultimate Form Builder Lite Multiple Vulnerabilities (1.3.7)

MySQL CVE-2020-2924 Vulnerability (CVE-2020-2924)

WordPress Plugin Limit Attempts by BestWebSoft Multiple Vulnerabilities (1.0.3)

XWiki Improper Encoding or Escaping of Output Vulnerability (CVE-2023-26472)

WordPress Plugin BackWPup Unspecified Vulnerability (3.3)

Severity

Medium

Classification

CVE-2012-4557

Tags

Missing Update Known Vulnerabilities