Description
The mod_proxy_ajp module in the Apache HTTP Server 2.2.12 through 2.2.21 places a worker node into an error state upon detection of a long request-processing time, which allows remote attackers to cause a denial of service (worker consumption) via an expensive request.
Remediation
References
Related Vulnerabilities
Java Unspesificed Vulnerability (CVE-2018-3150)
Oracle HTTP Server Out-of-bounds Read Vulnerability (CVE-2018-16890)
WordPress Plugin Event Calendar WD-Responsive Event Calendar Cross-Site Scripting (1.0.93)
WordPress Plugin Participants Database Cross-Site Scripting (1.7.5.9)
WordPress Plugin Integration for Contact Form 7 and Mailchimp Cross-Site Scripting (1.0.9)