CVE-2002-1895

2002-12-31T05:00:00
ID CVE-2002-1895
Type cve
Reporter cve@mitre.org
Modified 2019-03-25T11:29:00

Description

The servlet engine in Jakarta Apache Tomcat 3.3 and 4.0.4, when using IIS and the ajp1.3 connector, allows remote attackers to cause a denial of service (crash) via a large number of HTTP GET requests for an MS-DOS device such as AUX, LPT1, CON, or PRN.