3 matches found
Jana Server does not adequately validate user input thereby allowing directory traversal
Overview Jana Server contains a directory traversal vulnerability. Description Versions 1.4x of Jana Server, a web server for Windows developed by T. Hauck, do not properly filter requests for hexadecimal encodings of ".." dot-dot and allows directory traversal out of the HTTP document root...
T. Hauck Jana Server 1.451.462.0 - MS-DOS Device Name Denial of Service
T. Hauck Jana Server 1.451.462.0 - MS-DOS Device Name Denial of Service source: https://www.securityfocus.com/bid/2704/info Versions of Jana Server are vulnerable to a denial of service attack. It is possible to remotely crash a system running Jana Server by submitting a URL request which specifi...
T. Hauck Jana Server 1.45/1.46/2.0 - MS-DOS Device Name Denial of Service
source: https://www.securityfocus.com/bid/2704/info Versions of Jana Server are vulnerable to a denial of service attack. It is possible to remotely crash a system running Jana Server by submitting a URL request which specifies an MS-DOS devicename. A hard reboot of the exploited server will be...