Description

Apache httpd 2.0.59 and 2.2.4, with the Prefork MPM module, allows local users to cause a denial of service via certain code sequences executed in a worker process that (1) stop request processing by killing all worker processes and preventing creation of replacements or (2) hang the system by forcing the master process to fork an arbitrarily large number of worker processes. NOTE: This might be an inherent design limitation of Apache with respect to worker processes in hosted environments.

Remediation

References

CVE-2007-3303

Related Vulnerabilities

Piwigo Improper Access Control Vulnerability (CVE-2016-10084)

WordPress Plugin Quiz and Survey Master (QSM)-Easy Quiz and Survey Maker Multiple SQL Injection Vulnerabilities (4.4.2)

WordPress Plugin All-In-One Security (AIOS)-Security and Firewall SQL Injection (3.9.0)

WordPress Plugin WP HTML Author Bio Cross-Site Scripting (1.2.0)

WordPress Plugin Active Directory Integration/LDAP Integration Unspecified Vulnerability (3.6.95)

Severity

Medium

Classification

CVE-2007-3303 CWE-94

Tags

Missing Update Known Vulnerabilities