Description

mod_cluster, as used in Red Hat JBoss Web Server 2.1, allows remote attackers to cause a denial of service (Apache http server crash) via an MCMP message containing a series of = (equals) characters after a legitimate element.

Remediation

References

CVE-2016-3110

Related Vulnerabilities

WordPress Plugin WP DoNotTrack Cross-Site Scripting (0.8.8)

Internet Information Services Other Vulnerability (CVE-2000-0884)

WordPress Plugin Simple 301 Redirects by BetterLinks Unspecified Vulnerability (1.06)

Atlassian Jira Uncontrolled Search Path Element Vulnerability (CVE-2019-20400)

WordPress Plugin Newsletters Multiple Vulnerabilities (4.6.5.3)

Severity

High

Classification

CVE-2016-3110 CWE-20 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Tags

Missing Update Known Vulnerabilities