CVE-2002-1895

CVE-2002-1895 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

The servlet engine in Jakarta Apache Tomcat 3.3 and 4.0.4, when using IIS and the ajp1.3 connector, allows remote attackers to cause a denial of service (crash) via a large number of HTTP GET requests for an MS-DOS device such as AUX, LPT1, CON, or PRN.

Learn more about our Cis Benchmark Audit For Apache Http Server.