8 matches found
ai.catboost:catboost-spark_2.11 (>=0.25-rc1 <=0.25-rc3), ai.catboost:catboost-spark_2.12 (>=0.25-rc1 <=0.25-rc3) +4643 more potentially affected by CVE-2007-5614 via org.mortbay.jetty:jetty (>=6.0.0 <=6.1.5rc0)
org.mortbay.jetty:jetty MAVEN version =6.0.0, =0.25-rc1, =0.25-rc1, =0.25, =0.25, =0.25, =0.25, =0.6.0, =3.20.0.2, =3.20.0.2, =3.20.0.2, =3.20.0.2, =3.8.3.3, =3.42.0.4 and more Source cves: CVE-2007-5614 Source advisory: OSV:GHSA-FVH3-4V5R-CVVC...
Fedora Update for jetty FEDORA-2008-6164
Check for the Version of jetty OpenVAS Vulnerability Test Fedora Update for jetty FEDORA-2008-6164 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...
Fedora Update for jetty FEDORA-2008-6141
Check for the Version of jetty OpenVAS Vulnerability Test Fedora Update for jetty FEDORA-2008-6141 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...
Fedora Update for jetty FEDORA-2008-6164
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora 9 : jetty-5.1.14-1jpp.2.fc9 (2008-6141)
Bug 417411 - CVE-2007-5615: jetty CRLF injection - Bug 417391 - CVE-2007-5613: jetty cross site scripting - Bug 417401 - CVE-2007-5614: jetty session hijacking issue Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory...
Fedora 8 : jetty-5.1.14-1jpp.1.fc8 (2008-6164)
Fri Jul 4 2008 Jeff Johnston 5.1.14-1jpp.1 - Security patch - Resolves 417401, 417411, 417391 - Upgrade to 5.1.14 source tarball for Fedora Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to...
CVE-2007-5614
CVE-2007-5614 affects Mortbay Jetty prior to 6.1.6rc1, where improper handling of certain quote sequences in HTML cookie parameters can lead to remote session hijacking via unspecified vectors. This is documented in the original vulnerability description plus multiple vulnerability references (in...
Mortbay Jetty fails to properly handle cookies with quotes
Overview Mortbay Jetty fails to properly handle cookie quotes, which may allow session hijacking. Description Mortbay Jetty is a web server that is written in Java. Jetty fails to properly handle cookies with certain quote sequences. This can cause the Jetty cookie parsing mechanism to improperly...