Description
Jakarta Tomcat before 3.3.1a on certain Windows systems may allow remote attackers to cause a denial of service (thread hang and resource consumption) via a request for a JSP page containing an MS-DOS device name, such as aux.jsp.
Remediation
References
Related Vulnerabilities
MongoDb Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-6494)
Nginx CVE-2009-4487 Vulnerability (CVE-2009-4487)
OpenSSL NULL Pointer Dereference Vulnerability (CVE-2021-23841)
WordPress Plugin Gallery-Image and Video Gallery with Thumbnails SQL Injection (1.2.0)
MediaWiki Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2021-30152)