Jetty: >> Jetty Http Server >> 4.1.0_rc4 Security Vulnerabilities
HttpRequest.java in Jetty HTTP Server before 4.2.19 allows remote attackers to cause denial of service (memory usage and application crash) via HTTP requests with a large Content-Length.
CVSS Score
5.0
EPSS Score
0.013
Published
2004-12-31
Unspecified vulnerability in Jetty HTTP Server, as used in (1) IBM Trading Partner Interchange before 4.2.4, (2) CA Unicenter Web Services Distributed Management (WSDM) before 3.11, and possibly other products, allows remote attackers to read arbitrary files via a .. (dot dot) in the URL.
CVSS Score
7.5
EPSS Score
0.037
Published
2004-12-31