Description
The ap_rwrite() function in Apache HTTP Server 2.4.53 and earlier may read unintended memory if an attacker can cause the server to reflect very large input using ap_rwrite() or ap_rputs(), such as with mod_luas r:puts() function.
Remediation
References
Related Vulnerabilities
OpenSSL Improper Input Validation Vulnerability (CVE-2010-0433)
WordPress Plugin MiniMax-Page Layout Builder Arbitrary File Upload (1.7.1)
WordPress Plugin Gallery for Social Photo Unspecified Vulnerability (1.0.0.25)
WordPress Plugin Transposh WordPress Translation Multiple Vulnerabilities (1.0.8.1)
WordPress Plugin Peter's Login Redirect Multiple Vulnerabilities (2.9.0)