Summary
By sending an overly long request for a .jsp file it is possible to crash the remote web server.
This problem is known as the ServletExec / JRun ISAPI DoS.
Solution for ServletExec:
Download patch #9 from ftp://ftp.newatlanta.com/public/4_1/patches/
References
Updated on 2017-03-28
Severity
Classification
-
CVE CVE-2000-0681, CVE-2002-0894 -
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Atutor AContent Multiple SQL Injection and XSS Vulnerabilities
- A-Blog 'sources/search.php' SQL Injection Vulnerability
- ASUS RT56U Router Multiple Vulnerabilities
- Awstats Configuration File Remote Arbitrary Command Execution Vulnerability
- ASAS Server End User Self Service (EUSS) SQL Injection Vulnerability