Lucene search

[email protected]NVD:CVE-2005-3747

HistoryNov 22, 2005 - 11:03 a.m.

CVE-2005-3747

2005-11-2211:03:00

CWE-200

[email protected]

web.nvd.nist.gov

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.6 Medium

AI Score

Confidence

Low

0.011 Low

EPSS

Percentile

84.4%

JSON

Unspecified vulnerability in Jetty before 5.1.6 allows remote attackers to obtain source code of JSP pages, possibly involving requests for .jsp files with URL-encoded backslash (“%5C”) characters. NOTE: this might be the same issue as CVE-2006-2758.

Affected configurations

NVD

Node

mortbayjettyRange≤5.1.5

mortbayjettyMatch1.0

mortbayjettyMatch1.0.1

mortbayjettyMatch1.1

mortbayjettyMatch1.1.1

mortbayjettyMatch1.2.0

mortbayjettyMatch1.3.0

mortbayjettyMatch1.3.1

mortbayjettyMatch1.3.2

mortbayjettyMatch1.3.3

mortbayjettyMatch1.3.4

mortbayjettyMatch1.3.5

mortbayjettyMatch2.0alpha1

mortbayjettyMatch2.0alpha2

mortbayjettyMatch2.0beta1

mortbayjettyMatch2.0beta2

mortbayjettyMatch2.0.0

mortbayjettyMatch2.0.1

mortbayjettyMatch2.0.2

mortbayjettyMatch2.0.3

mortbayjettyMatch2.0.4

mortbayjettyMatch2.0.5

mortbayjettyMatch2.1.0

mortbayjettyMatch2.1.1

mortbayjettyMatch2.1.2

mortbayjettyMatch2.1.3

mortbayjettyMatch2.1.4

mortbayjettyMatch2.1.5

mortbayjettyMatch2.1.6

mortbayjettyMatch2.1.7

mortbayjettyMatch2.1.b0

mortbayjettyMatch2.1.b1

mortbayjettyMatch2.2alpha0

mortbayjettyMatch2.2alpha1

mortbayjettyMatch2.2beta0

mortbayjettyMatch2.2beta1

mortbayjettyMatch2.2beta2

mortbayjettyMatch2.2beta3

mortbayjettyMatch2.2beta4

mortbayjettyMatch2.2.0

mortbayjettyMatch2.2.1

mortbayjettyMatch2.2.2

mortbayjettyMatch2.2.3

mortbayjettyMatch2.2.4

mortbayjettyMatch2.2.5

mortbayjettyMatch2.2.6

mortbayjettyMatch2.2.7

mortbayjettyMatch2.2.8

mortbayjettyMatch2.3.0

mortbayjettyMatch2.3.0a

mortbayjettyMatch2.3.1

mortbayjettyMatch2.3.2

mortbayjettyMatch2.3.3

mortbayjettyMatch2.3.4

mortbayjettyMatch2.3.5

mortbayjettyMatch2.4.0

mortbayjettyMatch2.4.1

mortbayjettyMatch2.4.2

mortbayjettyMatch2.4.3

mortbayjettyMatch2.4.4

mortbayjettyMatch2.4.5

mortbayjettyMatch2.4.6

mortbayjettyMatch2.4.7

mortbayjettyMatch2.4.8

mortbayjettyMatch2.4.9

mortbayjettyMatch3.0

mortbayjettyMatch3.0.0

mortbayjettyMatch3.0.0rc1

mortbayjettyMatch3.0.0rc2

mortbayjettyMatch3.0.0rc3

mortbayjettyMatch3.0.0rc4

mortbayjettyMatch3.0.0rc5

mortbayjettyMatch3.0.0rc6

mortbayjettyMatch3.0.0rc7

mortbayjettyMatch3.0.0rc8

mortbayjettyMatch3.0.1

mortbayjettyMatch3.0.2

mortbayjettyMatch3.0.3

mortbayjettyMatch3.0.4

mortbayjettyMatch3.0.5

mortbayjettyMatch3.0.6

mortbayjettyMatch3.0.a0

mortbayjettyMatch3.0.a1

mortbayjettyMatch3.0.a2

mortbayjettyMatch3.0.a3

mortbayjettyMatch3.0.a4

mortbayjettyMatch3.0.a5

mortbayjettyMatch3.0.a6

mortbayjettyMatch3.0.a7

mortbayjettyMatch3.0.a8

mortbayjettyMatch3.0.a9

mortbayjettyMatch3.0.a90

mortbayjettyMatch3.0.a91

mortbayjettyMatch3.0.a92

mortbayjettyMatch3.0.a93

mortbayjettyMatch3.0.a94

mortbayjettyMatch3.0.a95

mortbayjettyMatch3.0.a96

mortbayjettyMatch3.0.a97

mortbayjettyMatch3.0.a98

mortbayjettyMatch3.0.a99

mortbayjettyMatch3.0.b01

mortbayjettyMatch3.0.b02

mortbayjettyMatch3.0.b03

mortbayjettyMatch3.0.b04

mortbayjettyMatch3.0.b05

mortbayjettyMatch3.1rc0

mortbayjettyMatch3.1rc1

mortbayjettyMatch3.1rc2

mortbayjettyMatch3.1rc3

mortbayjettyMatch3.1rc4

mortbayjettyMatch3.1rc5

mortbayjettyMatch3.1rc6

mortbayjettyMatch3.1rc7

mortbayjettyMatch3.1rc8

mortbayjettyMatch3.1rc9

mortbayjettyMatch3.1.0

mortbayjettyMatch3.1.1

mortbayjettyMatch3.1.2

mortbayjettyMatch3.1.3

mortbayjettyMatch3.1.4

mortbayjettyMatch3.1.5

mortbayjettyMatch3.1.6

mortbayjettyMatch3.1.7

mortbayjettyMatch3.1.8

mortbayjettyMatch3.1.9

mortbayjettyMatch4.0rc1

mortbayjettyMatch4.0rc2

mortbayjettyMatch4.0rc3

mortbayjettyMatch4.0.0

mortbayjettyMatch4.0.1

mortbayjettyMatch4.0.1rc0

mortbayjettyMatch4.0.1rc1

mortbayjettyMatch4.0.1rc2

mortbayjettyMatch4.0.2

mortbayjettyMatch4.0.3

mortbayjettyMatch4.0.4

mortbayjettyMatch4.0.5

mortbayjettyMatch4.0.6

mortbayjettyMatch4.0.b0

mortbayjettyMatch4.0.b1

mortbayjettyMatch4.0.b2

mortbayjettyMatch4.0.d0

mortbayjettyMatch4.0.d1

mortbayjettyMatch4.0.d2

mortbayjettyMatch4.0.d3

mortbayjettyMatch4.0.d4

mortbayjettyMatch4.1.0

mortbayjettyMatch4.1.0rc0

mortbayjettyMatch4.1.0rc1

mortbayjettyMatch4.1.0rc2

mortbayjettyMatch4.1.0rc3

mortbayjettyMatch4.1.0rc4

mortbayjettyMatch4.1.0rc5

mortbayjettyMatch4.1.0rc6

mortbayjettyMatch4.1.1

mortbayjettyMatch4.1.2

mortbayjettyMatch4.1.3

mortbayjettyMatch4.1.4

mortbayjettyMatch4.1.b0

mortbayjettyMatch4.1.b1

mortbayjettyMatch4.1.d0

mortbayjettyMatch4.1.d1

mortbayjettyMatch4.1.d2

mortbayjettyMatch4.2

mortbayjettyMatch4.2.0

mortbayjettyMatch4.2.0beta0

mortbayjettyMatch4.2.0rc0

mortbayjettyMatch4.2.0rc1

mortbayjettyMatch4.2.1

mortbayjettyMatch4.2.2

mortbayjettyMatch4.2.3

mortbayjettyMatch4.2.4

mortbayjettyMatch4.2.4rc0

mortbayjettyMatch4.2.5

mortbayjettyMatch4.2.6

mortbayjettyMatch4.2.7

mortbayjettyMatch4.2.8_01

mortbayjettyMatch4.2.9

mortbayjettyMatch4.2.9rc1

mortbayjettyMatch4.2.9rc2

mortbayjettyMatch4.2.10

mortbayjettyMatch4.2.10pre0

mortbayjettyMatch4.2.10pre1

mortbayjettyMatch4.2.10pre2

mortbayjettyMatch4.2.11

mortbayjettyMatch4.2.12

mortbayjettyMatch4.2.14

mortbayjettyMatch4.2.14rc0

mortbayjettyMatch4.2.14rc1

mortbayjettyMatch4.2.15

mortbayjettyMatch4.2.15rc0

mortbayjettyMatch4.2.16

mortbayjettyMatch4.2.17

mortbayjettyMatch4.2.18

mortbayjettyMatch4.2.19

mortbayjettyMatch4.2.20

mortbayjettyMatch4.2.20rc0

mortbayjettyMatch4.2.21

mortbayjettyMatch4.2.22

mortbayjettyMatch4.2.23

mortbayjettyMatch4.2.23rc0

mortbayjettyMatch4.2.24

mortbayjettyMatch4.2.24rc0

mortbayjettyMatch4.2.24rc1

mortbayjettyMatch4.2.25

mortbayjettyMatch4.2.26

mortbayjettyMatch4.2.27

mortbayjettyMatch5.0alpha0

mortbayjettyMatch5.0alpha1

mortbayjettyMatch5.0alpha2

mortbayjettyMatch5.0alpha3

mortbayjettyMatch5.0beta0

mortbayjettyMatch5.0beta1

mortbayjettyMatch5.0beta2

mortbayjettyMatch5.0rc1

mortbayjettyMatch5.0rc2

mortbayjettyMatch5.0rc3

mortbayjettyMatch5.0rc4

mortbayjettyMatch5.0.0

mortbayjettyMatch5.0.0rc0

mortbayjettyMatch5.1

mortbayjettyMatch5.1.0

mortbayjettyMatch5.1.1

mortbayjettyMatch5.1.1rc0

mortbayjettyMatch5.1.1rc1

mortbayjettyMatch5.1.2

mortbayjettyMatch5.1.2pre0

mortbayjettyMatch5.1.3

mortbayjettyMatch5.1.3rc0

mortbayjettyMatch5.1.3rc1

mortbayjettyMatch5.1.3rc2

mortbayjettyMatch5.1.3rc3

mortbayjettyMatch5.1.3rc4

mortbayjettyMatch5.1.4

mortbayjettyMatch5.1.4rc0

mortbayjettyMatch5.1.5rc0

mortbayjettyMatch5.1.5rc1

mortbayjettyMatch5.1.5rc2

mortbayjettyMatch5.1.11rc0

References

secunia.com/advisories/17659

secunia.com/advisories/22669

sourceforge.net/project/shownotes.php?release_id=372086&group_id=7322

www.securityfocus.com/archive/1/450315/100/0/threaded

www.securityfocus.com/bid/15515

www.vupen.com/english/advisories/2005/2515

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.6 Medium

AI Score

Confidence

Low

0.011 Low

EPSS

Percentile

84.4%

JSON

Related for NVD:CVE-2005-3747

cve2 cvelist2 prion1 github2 nvd1 osv2 veracode2 nessus2