1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
|
Candidate: CVE-2009-3579
PublicDate: 2009-10-07
References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3579
Description:
Cross-site scripting (XSS) vulnerability in the CookieDump.java sample
application in Mort Bay Jetty 6.1.19 and 6.1.20 allows remote attackers to
inject arbitrary web script or HTML via the Value parameter in a GET
request to cookie/.
Ubuntu-Description:
Notes:
jdstrand> in a sample application
Bugs:
Priority: negligible
Discovered-by:
Assigned-to:
Patches_jetty:
upstream_jetty: released (6.1.21)
dapper_jetty: ignored (reached end-of-life)
hardy_jetty: ignored (reached end-of-life)
intrepid_jetty: needed (reached end-of-life)
jaunty_jetty: ignored (reached end-of-life)
karmic_jetty: ignored (reached end-of-life)
lucid_jetty: not-affected (6.1.22-1ubuntu1)
maverick_jetty: not-affected (6.1.22-1ubuntu1)
natty_jetty: not-affected (6.1.22-1ubuntu1)
oneiric_jetty: not-affected (6.1.22-1ubuntu1)
devel_jetty: not-affected (6.1.22-1ubuntu1)
|