Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Apache Tomcat < 3.3.1a Servlet Engine MS/DOS Device Name DoS

Medium

Synopsis

The remote host is vulnerable to a Denial of Service (DoS) attack.

Description

It may be possible the freeze or crash the remote Tomcat web server by making it read MS/DOS devices files through its servlet engine (ie: /examples/servlet/AUX).

Solution

Upgrade to Tomcat 3.3.1a or higher.