The exception handling code in Eclipse Jetty prior to 9.2.9.v20150224 allows remote malicious users to obtain sensitive information from process memory via illegal characters in an HTTP header, aka JetLeak.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
fedoraproject fedora 22 |
||
eclipse jetty 9.3.0 |
||
eclipse jetty 9.2.3 |
||
eclipse jetty 9.2.8 |
||
eclipse jetty 9.2.5 |
||
eclipse jetty 9.2.4 |
||
eclipse jetty 9.2.7 |
||
eclipse jetty 9.2.6 |