漏洞类别:Web server漏洞等级: 
漏洞信息
Allaire JRun is a Web application development suite with JSP and Java Servlets. A servlet is a module that runs within a service, and is invoked through various requests. Although similar to CGI applications, servlets execute more quickly.
The JRun web application server contains a denial of service condition. Requesting a malformed URL by way of the java servlet composed of numerous '...' sequences, will cause the JRun application server to temporarily stop responding. If multiple malformed requests are made, JRun will permanently stop responding and refuse all new requests for JRun dependant services. A restart of the server is required to regain normal functionality.
漏洞危害
By exploiting this vulnerability, unauthorized users may be able to cause a denial of service, and implement further attacks against the host.
解决方案
0day
文章评论