https://www.exploit-db.com/exploits/19744
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200002-035

NovellGroupWiseWebAccessEnhancementPack中Java服务器存在漏洞。远程攻击者借助超长服务程序URL可以导致拒绝服务。

source: http://www.securityfocus.com/bid/972/info

By requesting a long URL from a Novell Groupwise 5.5 webserver with the Enhancement Pack installed, it is possible to cause the server to abend, the Java.nlm to take up all available CPU resource, or to stop the post office service. The server will need to be rebooted to restore normal operation.


http ://target/servlet/long string of 200+ characters

来源:BID
名称:972
链接:http://www.securityfocus.com/bid/972
来源:BUGTRAQ
名称:20000207NovellGroupWise5.5EnhancementPackWebAccessDenialofService
链接:http://archives.neohapsis.com/archives/bugtraq/2000-02/0049.html