Lucene search
HistorySep 01, 2004 - 4:00 a.m.
CVE-2003-0045
cve-2003-0045
jakarta tomcat
denial of service
windows
jsp
nvd
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
6.6 Medium
AI Score
Confidence
High
0.004 Low
EPSS
Percentile
72.1%
Jakarta Tomcat before 3.3.1a on certain Windows systems may allow remote attackers to cause a denial of service (thread hang and resource consumption) via a request for a JSP page containing an MS-DOS device name, such as aux.jsp.
Affected configurations
Node
apachetomcatMatch3.0
ORapachetomcatMatch3.1
ORapachetomcatMatch3.1.1
ORapachetomcatMatch3.2
ORapachetomcatMatch3.2.1
ORapachetomcatMatch3.2.3
ORapachetomcatMatch3.2.4
ORapachetomcatMatch3.3
ORapachetomcatMatch3.3.1
Related
nessus
nessus
Apache Tomcat MS-DOS Device Name Request DoS
2002-10-25 00:00:00
osv
osv
Jakarta Tomcat Denial of Service vulnerability
2022-04-29 01:25:43
nvd
nvd
CVE-2003-0045
2003-02-07 05:00:00
openvas
openvas
Tomcat servlet engine MS/DOS device names denial of service
2005-11-03 00:00:00
tomcat
tomcat
Fixed in Apache Tomcat 3.3.1
2004-09-01 00:00:00
cvelist
cvelist
CVE-2003-0045
2004-09-01 04:00:00
github
github
Jakarta Tomcat Denial of Service vulnerability
2022-04-29 01:25:43
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
6.6 Medium
AI Score
Confidence
High
0.004 Low
EPSS
Percentile
72.1%
Related for CVE-2003-0045