Lucene search
HistoryAug 14, 2001 - 4:00 a.m.
CVE-2001-0558
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
AI Score
6.5
Confidence
High
EPSS
0.021
Percentile
89.1%
T. Hauck Jana Webserver 2.01 beta 1 and earlier allows a remote attacker to create a denial of service via a URL request which includes a MS-DOS device name (i.e. GET /aux HTTP/1.0).
Affected configurations
Node
t._hauckjana_web_serverMatch1.45
ORt._hauckjana_web_serverMatch1.46
ORt._hauckjana_web_serverMatch2.0b2
ORt._hauckjana_web_serverMatch2.0beta1
| Vendor | Product | Version | CPE |
|---|---|---|---|
| t._hauck | jana_web_server | 1.45 | cpe:2.3:a:t._hauck:jana_web_server:1.45:*:*:*:*:*:*:* |
| t._hauck | jana_web_server | 1.46 | cpe:2.3:a:t._hauck:jana_web_server:1.46:*:*:*:*:*:*:* |
| t._hauck | jana_web_server | 2.0b2 | cpe:2.3:a:t._hauck:jana_web_server:2.0b2:*:*:*:*:*:*:* |
| t._hauck | jana_web_server | 2.0beta1 | cpe:2.3:a:t._hauck:jana_web_server:2.0beta1:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2001-0558
2002-03-09 05:00:00
exploitdb
exploitdb
T. Hauck Jana Server 1.45/1.46/2.0 - MS-DOS Device Name Denial of Service
2001-05-07 00:00:00
cve
cve
CVE-2001-0558
2002-03-09 05:00:00
openvas
openvas
HTTP Windows 98 MS/DOS device names DOS
2005-11-03 00:00:00
HTTP Windows 98 MS/DOS device names DOS
2005-11-03 00:00:00
nessus
nessus
Multiple Web Server on Windows MS/DOS Device Request Remote DOS
2002-03-29 00:00:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
AI Score
6.5
Confidence
High
EPSS
0.021
Percentile
89.1%
Related for NVD:CVE-2001-0558