Description

Apache Traffic Server 2.0.x and 3.0.x before 3.0.4 and 3.1.x before 3.1.3 does not properly allocate heap memory, which allows remote attackers to cause a denial of service (daemon crash) via a long HTTP Host header.

Remediation

References

CVE-2012-0256

Related Vulnerabilities

MySQL CVE-2020-14672 Vulnerability (CVE-2020-14672)

Perl Numeric Errors Vulnerability (CVE-2010-1158)

Squid Uncontrolled Resource Consumption Vulnerability (CVE-2021-46784)

WordPress Plugin WordPress Ping Optimizer Cross-Site Request Forgery (2.35.1.2.3)

WordPress Plugin Disable Comments Cross-Site Request Forgery (1.0.3)

Severity

Medium

Classification

CVE-2012-0256 CWE-119

Tags

Missing Update Known Vulnerabilities