Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> CGI abuses >> ServletExec 4.1 / JRun ISAPI DoS


Vulnerability Assessment Details

ServletExec 4.1 / JRun ISAPI DoS

Vulnerability Assessment Summary
Tests for ServletExec 4.1 ISAPI DoS

Detailed Explanation for this Vulnerability Assessment

By sending an overly long request for a .jsp file it is
possible to crash the remote web server.

This problem is known as the ServletExec / JRun ISAPI DoS.

Solution for ServletExec:
Download patch #9 from ftp://ftp.newatlanta.com/public/4_1/patches/

References:

www.westpoint.ltd.uk/advisories/wp-02-0006.txt
http://online.securityfocus.com/bid/6122

Network Security Threat Level: High

Networks Security ID: 1570, 4796

Vulnerability Assessment Copyright: This script is Copyright (C) 2002 Matt Moore

Cables, Connectors

IBM System X3850 X3950 CPU Server Heat Sink 49Y7759
$15.0
IBM System X3850 X3950 CPU Server Heat Sink 49Y7759 pictureIBM Memory Riser Expansion Card For x3850 X5 and x3950 X5 Servers 46M0001
$30.0
IBM Memory Riser Expansion Card For x3850 X5 and x3950 X5 Servers 46M0001 pictureIBM 49Y4230 I340-T2 Intel Ethernet Dual Port Server Adapter - PCI Express x4
$64.55
IBM 49Y4230 I340-T2 Intel Ethernet Dual Port Server Adapter - PCI Express x4 pictureLenovo IBM 32GB DDR4 288-Pin PC4-19200 2400MHz ECC REG SERVER 46W0833 46W0835
$375.0
Lenovo IBM 32GB DDR4 288-Pin PC4-19200 2400MHz ECC REG SERVER 46W0833 46W0835 picture


Discussions

No Discussions have been posted on this vulnerability.