Description

mod_cluster, as used in Red Hat JBoss Web Server 2.1, allows remote attackers to cause a denial of service (Apache http server crash) via an MCMP message containing a series of = (equals) characters after a legitimate element.

Remediation

References

CVE-2016-3110

Related Vulnerabilities

WordPress Plugin Simple Security Multiple Cross-Site Scripting Vulnerabilities (1.1.5)

WordPress Plugin Form Builder Cross-Site Scripting (1.2.0)

WordPress Plugin All-In-One Security (AIOS)-Security and Firewall Cross-Site Request Forgery (3.8.9)

WordPress Plugin WP-DownloadManager Cross-Site Scripting (1.67)

Drupal Core 4.7.x Cross-Site Scripting (4.7.0 - 4.7.4)

Severity

High

Classification

CVE-2016-3110 CWE-20 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Tags

Missing Update Known Vulnerabilities