: An unauthenticated remote attacker can use modified flow-control windows to exhaust server resources. This leads to thread starvation , causing the application to stop responding to legitimate users. Severity : Medium (CVSS 5.9). 2. Padding Oracle in mod_session_crypto (CVE-2016-0736)
: Specifically affecting versions 2.4.18 through 2.4.39. apache httpd 2.4.18 vulnerability
CVSS 4.0 Severity and Vector Strings: NIST: NVD. N/A. NVD assessment not yet provided. CVSS 3.x Severity and Vector Strings: NIST: National Institute of Standards and Technology (.gov) CVE-2016-0736 Detail - NVD : An unauthenticated remote attacker can use modified