Description
It was found in Undertow before 1.3.28 that with non-clean TCP close, the Websocket server gets into infinite loop on every IO thread, effectively causing DoS.
Remediation
References
Related Vulnerabilities
WordPress Plugin 2Way VideoCalls and Random Chat-HTML5 Webcam Videochat Cross-Site Scripting (4.41)
WordPress Plugin NextGEN Gallery-WordPress Gallery Unspecified Vulnerability (2.0.77.3)
WordPress 3.8.x Cross-Domain Flash Injection Vulnerability (3.8 - 3.8.24)
Moodle Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2018-14630)
WordPress Plugin The Events Calendar Security Bypass (3.11.2)