CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
AI Score
Confidence
High
EPSS
Percentile
89.1%
T. Hauck Jana Webserver 2.01 beta 1 and earlier allows a remote attacker to create a denial of service via a URL request which includes a MS-DOS device name (i.e. GET /aux HTTP/1.0).
Vendor | Product | Version | CPE |
---|---|---|---|
t._hauck | jana_web_server | 1.45 | cpe:2.3:a:t._hauck:jana_web_server:1.45:*:*:*:*:*:*:* |
t._hauck | jana_web_server | 1.46 | cpe:2.3:a:t._hauck:jana_web_server:1.46:*:*:*:*:*:*:* |
t._hauck | jana_web_server | 2.0b2 | cpe:2.3:a:t._hauck:jana_web_server:2.0b2:*:*:*:*:*:*:* |
t._hauck | jana_web_server | 2.0beta1 | cpe:2.3:a:t._hauck:jana_web_server:2.0beta1:*:*:*:*:*:*:* |