7 matches found
ch.hortis.sonar:sonar-application (>=1.0 <=1.0.2), de.akquinet.jbosscc.latex:maven-latex-plugin (=1.2) +64 more potentially affected by CVE-2007-6672 via org.mortbay.jetty:jetty (>=6.1.5 <=6.1.6rc1)
org.mortbay.jetty:jetty MAVEN version =6.1.5, =1.0, =1.1, =2.0, =1.0-m1, =3.2, =3.2.2 and more Source cves: CVE-2007-6672 Source advisory: OSV:GHSA-4JJW-XRR6-9V3P...
CVE-2007-6672
Mortbay Jetty 6.1.5 and 6.1.6 allows remote attackers to bypass protection mechanisms and read the source of files via multiple '/' slash characters in the URI...
FreeBSD Ports: jetty
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
FreeBSD Ports: jetty
The remote host is missing an update to the system as announced in the referenced advisory. VID 0832ee18-cf77-11dc-8c6a-00304881ac9a OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
CVE-2007-6672
Jetty 6.1.5 and 6.1.6 are affected by CVE-2007-6672, an information-disclosure vulnerability where remote attackers can read restricted files by crafting URIs containing multiple forward slashes (//). The root cause is improper processing of URLs with multiple â/â characters, allowing access to r...
Mort Bay Jetty URL Multiple Slash Character Information Disclosure
The remote instance of Mort Bay Jetty allows an attacker to view static content in WEB-INF and behind security constraints because of the approach it uses to compact URLs like '/foo///bar'. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc';...
Jetty fails to properly process URLs that contain double / characters
Overview The Jetty web server contains a vulnerability that may allow an attacker to access private files or directories. Description Jetty is a web server that is implemented in Java. Jetty contains a vulnerability in the way it processes URLs with multiple "/" slash characters. See the Jetty...