Description
Lighttpd 1.4.56 through 1.4.58 allows a remote attacker to cause a denial of service (CPU consumption from stuck connections) because connection_read_header_more in connections.c has a typo that disrupts use of multiple read operations on large headers.
Remediation
References
Related Vulnerabilities
WordPress Plugin WordPress File Upload Cross-Site Scripting (4.3.3)
Piwigo URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2017-9464)
WordPress Plugin Namaste! LMS Cross-Site Scripting (2.5.9.4)
WordPress Plugin Theme Blvd Sliders Multiple Security Bypass Vulnerabilities (1.2.3)
Oracle Database Server CVE-2011-0877 Vulnerability (CVE-2011-0877)