Mortbay Jetty prior to 6.1.6rc1 does not properly handle "certain quote sequences" in HTML cookie parameters, which allows remote malicious users to hijack browser sessions via unspecified vectors.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mortbay jetty jetty 1.0 |
||
mortbay jetty jetty 2.4 |
||
mortbay jetty jetty 5.1 |
||
mortbay jetty jetty 6 |
||
mortbay jetty jetty 4.0 |
||
mortbay jetty jetty 4.1 |
||
mortbay jetty jetty 3.0 |
||
mortbay jetty jetty 3.1 |
||
mortbay jetty jetty 6.1 |
||
mortbay jetty jetty 4.2 |
||
mortbay jetty jetty 5 |