Faust Informatics Freestyle Chat server prior to 4.1 SR3 allows a remote attacker to create a denial of service via a URL request which includes a MS-DOS device name (e.g., GET /aux HTTP/1.0).Referenceshttps://exchange.xforce.ibmcloud.com/vulnerabilities/6602http://www.securityfocus.com/bid/2777http://archives.neohapsis.com/archives/bugtraq/2001-05/0241.html
