T. Hauck Jana Server MS-DOS Device Name DoS Vulnerability

Versions of Jana Server are vulnerable to a denial of service attack.

It is possible to remotely crash a system running Jana Server by submitting a URL request which specifies an MS-DOS devicename.

A hard reboot of the exploited server will be required to restore web services.


 

Privacy Statement
Copyright 2010, SecurityFocus