Description

Apache Traffic Server 2.0.x and 3.0.x before 3.0.4 and 3.1.x before 3.1.3 does not properly allocate heap memory, which allows remote attackers to cause a denial of service (daemon crash) via a long HTTP Host header.

Remediation

References

CVE-2012-0256

Related Vulnerabilities

MongoDb Missing Authorization Vulnerability (CVE-2024-6375)

WordPress Plugin Debug Log Manager Security Bypass (2.2.1)

WordPress Plugin Rating by BestWebSoft Cross-Site Scripting (0.1)

Liferay Portal Other Vulnerability (CVE-2023-33947)

OpenSSL Improper Input Validation Vulnerability (CVE-2010-0740)

Severity

Medium

Classification

CVE-2012-0256 CWE-119

Tags

Missing Update Known Vulnerabilities