Description
Lighttpd 1.4.56 through 1.4.58 allows a remote attacker to cause a denial of service (CPU consumption from stuck connections) because connection_read_header_more in connections.c has a typo that disrupts use of multiple read operations on large headers.
Remediation
References
Related Vulnerabilities
WordPress 3.9.x Multiple Vulnerabilities (3.9 - 3.9.23)
WordPress Plugin Like Button Rating-LikeBtn Server-Side Request Forgery (2.6.31)
WordPress Plugin MW WP Form Cross-Site Scripting (1.7.1)
WordPress Plugin WP-Live Chat by 3CX Cross-Site Scripting (8.1.9)
WordPress Plugin WordPress Video Player Multiple SQL Injection Vulnerabilities (1.5.16)