Description
Apache Traffic Server 2.0.x and 3.0.x before 3.0.4 and 3.1.x before 3.1.3 does not properly allocate heap memory, which allows remote attackers to cause a denial of service (daemon crash) via a long HTTP Host header.
Remediation
References
Related Vulnerabilities
MySQL CVE-2020-14672 Vulnerability (CVE-2020-14672)
Perl Numeric Errors Vulnerability (CVE-2010-1158)
Squid Uncontrolled Resource Consumption Vulnerability (CVE-2021-46784)
WordPress Plugin WordPress Ping Optimizer Cross-Site Request Forgery (2.35.1.2.3)
WordPress Plugin Disable Comments Cross-Site Request Forgery (1.0.3)