5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.004 Low
EPSS
Percentile
72.0%
Important: Denial of service CVE-2003-0045
JSP page names that match a Windows DOS device name, such as aux.jsp, may cause the thread processing the request to become unresponsive. A sequence of such requests may cause all request processing threads, and hence Tomcat, to become unresponsive.
Affects: 3.0, 3.1-3.1.1, 3.2-3.2.4, 3.3a
CPE | Name | Operator | Version |
---|---|---|---|
apache tomcat | eq | 3.0 | |
apache tomcat | ge | 3.1 | |
apache tomcat | le | 3.1.1 | |
apache tomcat | ge | 3.2 | |
apache tomcat | le | 3.2.4 | |
apache tomcat | eq | 3.3a |