Description
The deflate_in_filter function in mod_deflate.c in the mod_deflate module in the Apache HTTP Server before 2.4.10, when request body decompression is enabled, allows remote attackers to cause a denial of service (resource consumption) via crafted request data that decompresses to a much larger size.
Remediation
References
Related Vulnerabilities
WordPress 3.9.x Multiple Vulnerabilities (3.9 - 3.9.14)
SugarCRM Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2019-17310)
WordPress Plugin Premmerce Permalink Manager for WooCommerce Local File Inclusion (2.3.10)
WordPress Plugin Save Contact Form 7 SQL Injection (1.7)
Oracle Database Server CVE-2012-0526 Vulnerability (CVE-2012-0526)