CVE-2007-6672 - Secunia Advisories - Vulnerability Intelligence

CVE Reference: CVE-2007-6672
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2007-6672

Description: Mortbay Jetty 6.1.5 and 6.1.6 allows remote attackers to bypass protection mechanisms and read the source of files via multiple '/' (slash) characters in the URI.

CVE Status: Candidate

References: SAID Secunia Advisory: SA28322 Secunia Advisory: SA28547 MISC http://www.igniterealtime.org/community/message/163752 CONFIRM http://jira.codehaus.org/browse/JETTY-386#action_117699 http://jira.codehaus.org/browse/JETTY/fixforversion/13950 CERT-VN 553235 BID 27117

Return to the previous page.