Allaire JRun 3.0 http servlet server allows remote attackers to cause a denial of service via a URL that contains a long string of "." characters.
https://exchange.xforce.ibmcloud.com/vulnerabilities/5452
http://www.allaire.com/handlers/index.cfm?ID=18085&Method=Full