WEB APPLICATION VULNERABILITIES Standard & Premium

Apache HTTP Server Uncontrolled Resource Consumption Vulnerability (CVE-2014-0118)

Description

The deflate_in_filter function in mod_deflate.c in the mod_deflate module in the Apache HTTP Server before 2.4.10, when request body decompression is enabled, allows remote attackers to cause a denial of service (resource consumption) via crafted request data that decompresses to a much larger size.

Remediation

References

Related Vulnerabilities

Plone CMS Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2012-5485)

SharePoint CVE-2023-33130 Vulnerability (CVE-2023-33130)

WordPress Plugin JM Twitter Cards Information Disclosure (6.1)

MySQL CVE-2013-0389 Vulnerability (CVE-2013-0389)

Oracle Application Server CVE-2009-1999 Vulnerability (CVE-2009-1999)

Severity

Medium

Classification

CVE-2014-0118 CWE-400

Tags

Missing Update Known Vulnerabilities