Description
The deflate_in_filter function in mod_deflate.c in the mod_deflate module in the Apache HTTP Server before 2.4.10, when request body decompression is enabled, allows remote attackers to cause a denial of service (resource consumption) via crafted request data that decompresses to a much larger size.
Remediation
References
Related Vulnerabilities
WordPress Plugin MiwoEvents-Manage & Book Events Unspecified Vulnerability (1.2.0)
Oracle Database Server CVE-2019-2749 Vulnerability (CVE-2019-2749)
WordPress 3.8.x Multiple Vulnerabilities (3.8 - 3.8.17)
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-1161)
Magento Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2019-7950)