Unspecified vulnerability in Jetty HTTP Server, as used in (1) IBM Trading Partner Interchange prior to 4.2.4, (2) CA Unicenter Web Services Distributed Management (WSDM) prior to 3.11, and possibly other products, allows remote malicious users to read arbitrary files via a .. (dot dot) in the URL.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
ibm trading partner interchange 4.2.1 |
||
jetty jetty http server 4.2.14 |
||
jetty jetty http server 4.2.15 |
||
jetty jetty http server 4.2.6 |
||
jetty jetty http server 4.2.7 |
||
jetty jetty http server 4.2.11 |
||
jetty jetty http server 4.2.12 |
||
jetty jetty http server 4.2.4 |
||
jetty jetty http server 4.2.5 |
||
jetty jetty http server 3.1.6 |
||
jetty jetty http server 3.1.7 |
||
jetty jetty http server 4.1.0 |
||
jetty jetty http server 4.2.16 |
||
jetty jetty http server 4.2.17 |
||
jetty jetty http server 4.2.9 |
||
ca unicenter web services distributed management |
||
jetty jetty http server 4.1.0_rc4 |
||
jetty jetty http server 4.1.1 |
||
jetty jetty http server 4.2.18 |
||
jetty jetty http server 4.2.19 |
||
ibm trading partner interchange |
Vulmon