Description
The mod_proxy_ajp module in the Apache HTTP Server 2.2.12 through 2.2.21 places a worker node into an error state upon detection of a long request-processing time, which allows remote attackers to cause a denial of service (worker consumption) via an expensive request.
Remediation
References
Related Vulnerabilities
Apache Tomcat Improper Authentication Vulnerability (CVE-2013-2067)
Oracle Application Server CVE-2006-0286 Vulnerability (CVE-2006-0286)
MyBB Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2010-4627)
Oracle JRE CVE-2013-1537 Vulnerability (CVE-2013-1537)
WordPress 'wp-admin/admin.php' Module Configuration Security Bypass Vulnerability (0.6.2 - 2.8)