https://www.exploit-db.com/exploits/20830
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200108-081

T.HauckJanaWebserver2.01beta1版本及之前版本存在漏洞。远程攻击者可以借助含MS-DOS设备名(即：GET/auxHTTP/1.0)的URL请求创建服务拒绝。

source: http://www.securityfocus.com/bid/2704/info

Versions of Jana Server are vulnerable to a denial of service attack.

It is possible to remotely crash a system running Jana Server by submitting a URL request which specifies an MS-DOS devicename.

A hard reboot of the exploited server will be required to restore web services. 

www.example.com/aux

来源:XF
名称:jana-server-device-dos(6521)
链接:http://xforce.iss.net/static/6521.php
来源:BUGTRAQ
名称:20010507AdvisoryforJanaserver
链接:http://archives.neohapsis.com/archives/bugtraq/2001-05/0086.html
来源:BID
名称:2704
链接:http://www.securityfocus.com/bid/2704
来源:OSVDB
名称:1817
链接:http://www.osvdb.org/1817