Description

The mod_deflate module in Apache httpd 2.2.11 and earlier compresses large files until completion even after the associated network connection is closed, which allows remote attackers to cause a denial of service (CPU consumption).

Remediation

References

CVE-2009-1891

Related Vulnerabilities

WordPress Plugin Ad-minister Cross-Site Scripting (0.6)

Plone CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-4042)

CKEditor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-24816)

WordPress Plugin Order Export & Order Import for WooCommerce Cross-Site Request Forgery (1.6.0)

WordPress Plugin WP Server Health Stats Cross-Site Scripting (1.6.10)

Severity

High

Classification

CVE-2009-1891 CWE-400

Tags

Missing Update Known Vulnerabilities