Vulnerability Details CVE-2001-0558
T. Hauck Jana Webserver 2.01 beta 1 and earlier allows a remote attacker to create a denial of service via a URL request which includes a MS-DOS device name (i.e. GET /aux HTTP/1.0).
Exploit prediction scoring system (EPSS) score
EPSS Score 0.059
EPSS Ranking 90.1%
CVSS Severity
CVSS v2 Score 5.0
References
- http://archives.neohapsis.com/archives/bugtraq/2001-05/0086.html
- http://www.osvdb.org/1817
- http://www.securityfocus.com/bid/2704
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6521
- http://archives.neohapsis.com/archives/bugtraq/2001-05/0086.html
- http://www.osvdb.org/1817
- http://www.securityfocus.com/bid/2704
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6521
Products affected by CVE-2001-0558
-
cpe:2.3:a:t._hauck:jana_web_server:1.45
-
cpe:2.3:a:t._hauck:jana_web_server:1.46
-
cpe:2.3:a:t._hauck:jana_web_server:2.0b2
-
cpe:2.3:a:t._hauck:jana_web_server:2.0beta1