Lucene search

[email protected]CVE-2001-0558

HistoryMar 09, 2002 - 5:00 a.m.

CVE-2001-0558

2002-03-0905:00:00

[email protected]

web.nvd.nist.gov

t. hauck

jana webserver 2.01

beta 1

dos attack

ms-dos device name

cve-2001-0558

nvd.

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.5 Medium

AI Score

Confidence

High

0.021 Low

EPSS

Percentile

89.1%

JSON

T. Hauck Jana Webserver 2.01 beta 1 and earlier allows a remote attacker to create a denial of service via a URL request which includes a MS-DOS device name (i.e. GET /aux HTTP/1.0).

Affected configurations

NVD

Node

t._hauckjana_web_serverMatch1.45

t._hauckjana_web_serverMatch1.46

t._hauckjana_web_serverMatch2.0b2

t._hauckjana_web_serverMatch2.0beta1

CPENameOperatorVersion
t._hauck:jana_web_servert. hauck jana web servereq1.45
t._hauck:jana_web_servert. hauck jana web servereq1.46
t._hauck:jana_web_servert. hauck jana web servereq2.0b2
t._hauck:jana_web_servert. hauck jana web servereq2.0beta1

CPE	Name	Operator	Version
t._hauck:jana_web_server	t. hauck jana web server	eq	1.45
t._hauck:jana_web_server	t. hauck jana web server	eq	1.46
t._hauck:jana_web_server	t. hauck jana web server	eq	2.0b2
t._hauck:jana_web_server	t. hauck jana web server	eq	2.0beta1

References

archives.neohapsis.com/archives/bugtraq/2001-05/0086.html

www.osvdb.org/1817

www.securityfocus.com/bid/2704

exchange.xforce.ibmcloud.com/vulnerabilities/6521

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.5 Medium

AI Score

Confidence

High

0.021 Low

EPSS

Percentile

89.1%

JSON

Related for CVE-2001-0558

nvd1 cvelist1 openvas2 nessus1