Search Results (Refine Search)
- CPE Product Version: cpe:/a:mortbay:jetty:7.0.0:pre0
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2011-4461 |
Jetty 8.1.0.RC2 and earlier computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters. Published: December 29, 2011; 8:55:01 PM -0500 |
V3.0: 5.3 MEDIUM V2.0: 5.0 MEDIUM |
CVE-2009-1523 |
Directory traversal vulnerability in the HTTP server in Mort Bay Jetty 5.1.14, 6.x before 6.1.17, and 7.x through 7.0.0.M2 allows remote attackers to access arbitrary files via directory traversal sequences in the URI. Published: May 05, 2009; 1:30:00 PM -0400 |
V3.x:(not available) V2.0: 5.0 MEDIUM |