Total vulnerabilities in the database
Jakarta Tomcat before 3.3.1a on certain Windows systems may allow remote attackers to cause a denial of service (thread hang and resource consumption) via a request for a JSP page containing an MS-DOS device name, such as aux.jsp.
| Software | From | Fixed in |
|---|---|---|
| apache / tomcat | 3.1 | 3.1.x |
| apache / tomcat | 3.2.1 | 3.2.1.x |
| apache / tomcat | 3.2.4 | 3.2.4.x |
| apache / tomcat | 3.0 | 3.0.x |
| apache / tomcat | 3.1.1 | 3.1.1.x |
| apache / tomcat | 3.2.3 | 3.2.3.x |
| apache / tomcat | 3.2 | 3.2.x |
| apache / tomcat | 3.3.1 | 3.3.1.x |
| apache / tomcat | 3.3 | 3.3.x |