ID CVE-2011-4461
Summary Jetty 8.1.0.RC2 and earlier computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters.
References
Vulnerable Configurations
  • Oracle Sun Storage Common Array Manager 6.9.0
    cpe:2.3:a:oracle:sun_storage_common_array_manager:6.9.0
  • Mortbay Jetty 1.0
    cpe:2.3:a:mortbay:jetty:1.0
  • Mortbay Jetty 1.0.1
    cpe:2.3:a:mortbay:jetty:1.0.1
  • Mortbay Jetty 1.1
    cpe:2.3:a:mortbay:jetty:1.1
  • Mortbay Jetty 1.1.1
    cpe:2.3:a:mortbay:jetty:1.1.1
  • Mortbay Jetty 1.2.0
    cpe:2.3:a:mortbay:jetty:1.2.0
  • Mortbay Jetty 1.3.0
    cpe:2.3:a:mortbay:jetty:1.3.0
  • Mortbay Jetty 1.3.1
    cpe:2.3:a:mortbay:jetty:1.3.1
  • Mortbay Jetty 1.3.2
    cpe:2.3:a:mortbay:jetty:1.3.2
  • Mortbay Jetty 1.3.3
    cpe:2.3:a:mortbay:jetty:1.3.3
  • Mortbay Jetty 1.3.4
    cpe:2.3:a:mortbay:jetty:1.3.4
  • Mortbay Jetty 1.3.5
    cpe:2.3:a:mortbay:jetty:1.3.5
  • Mortbay Jetty 2.0 alpha1
    cpe:2.3:a:mortbay:jetty:2.0:alpha1
  • Mortbay Jetty 2.0 alpha2
    cpe:2.3:a:mortbay:jetty:2.0:alpha2
  • Mortbay Jetty 2.0 beta1
    cpe:2.3:a:mortbay:jetty:2.0:beta1
  • Mortbay Jetty 2.0 beta2
    cpe:2.3:a:mortbay:jetty:2.0:beta2
  • Mortbay Jetty 2.0.0
    cpe:2.3:a:mortbay:jetty:2.0.0
  • Mortbay Jetty 2.0.1
    cpe:2.3:a:mortbay:jetty:2.0.1
  • Mortbay Jetty 2.0.2
    cpe:2.3:a:mortbay:jetty:2.0.2
  • Mortbay Jetty 2.0.3
    cpe:2.3:a:mortbay:jetty:2.0.3
  • Mortbay Jetty 2.0.4
    cpe:2.3:a:mortbay:jetty:2.0.4
  • Mortbay Jetty 2.0.5
    cpe:2.3:a:mortbay:jetty:2.0.5
  • Mortbay Jetty 2.1.0
    cpe:2.3:a:mortbay:jetty:2.1.0
  • Mortbay Jetty 2.1.1
    cpe:2.3:a:mortbay:jetty:2.1.1
  • Mortbay Jetty 2.1.2
    cpe:2.3:a:mortbay:jetty:2.1.2
  • Mortbay Jetty 2.1.3
    cpe:2.3:a:mortbay:jetty:2.1.3
  • Mortbay Jetty 2.1.4
    cpe:2.3:a:mortbay:jetty:2.1.4
  • Mortbay Jetty 2.1.5
    cpe:2.3:a:mortbay:jetty:2.1.5
  • Mortbay Jetty 2.1.6
    cpe:2.3:a:mortbay:jetty:2.1.6
  • Mortbay Jetty 2.1.7
    cpe:2.3:a:mortbay:jetty:2.1.7
  • Mortbay Jetty 2.1.b0
    cpe:2.3:a:mortbay:jetty:2.1.b0
  • Mortbay Jetty 2.1.b1
    cpe:2.3:a:mortbay:jetty:2.1.b1
  • Mortbay Jetty 2.2 alpha0
    cpe:2.3:a:mortbay:jetty:2.2:alpha0
  • Mortbay Jetty 2.2 alpha1
    cpe:2.3:a:mortbay:jetty:2.2:alpha1
  • Mortbay Jetty 2.2 beta0
    cpe:2.3:a:mortbay:jetty:2.2:beta0
  • Mortbay Jetty 2.2 beta1
    cpe:2.3:a:mortbay:jetty:2.2:beta1
  • Mortbay Jetty 2.2 beta2
    cpe:2.3:a:mortbay:jetty:2.2:beta2
  • Mortbay Jetty 2.2 beta3
    cpe:2.3:a:mortbay:jetty:2.2:beta3
  • Mortbay Jetty 2.2 beta4
    cpe:2.3:a:mortbay:jetty:2.2:beta4
  • Mortbay Jetty 2.2.0
    cpe:2.3:a:mortbay:jetty:2.2.0
  • Mortbay Jetty 2.2.1
    cpe:2.3:a:mortbay:jetty:2.2.1
  • Mortbay Jetty 2.2.2
    cpe:2.3:a:mortbay:jetty:2.2.2
  • Mortbay Jetty 2.2.3
    cpe:2.3:a:mortbay:jetty:2.2.3
  • Mortbay Jetty 2.2.4
    cpe:2.3:a:mortbay:jetty:2.2.4
  • Mortbay Jetty 2.2.5
    cpe:2.3:a:mortbay:jetty:2.2.5
  • Mortbay Jetty 2.2.6
    cpe:2.3:a:mortbay:jetty:2.2.6
  • Mortbay Jetty 2.2.7
    cpe:2.3:a:mortbay:jetty:2.2.7
  • Mortbay Jetty 2.2.8
    cpe:2.3:a:mortbay:jetty:2.2.8
  • Mortbay Jetty 2.3.0
    cpe:2.3:a:mortbay:jetty:2.3.0
  • Mortbay Jetty 2.3.0a
    cpe:2.3:a:mortbay:jetty:2.3.0a
  • Mortbay Jetty 2.3.1
    cpe:2.3:a:mortbay:jetty:2.3.1
  • Mortbay Jetty 2.3.2
    cpe:2.3:a:mortbay:jetty:2.3.2
  • Mortbay Jetty 2.3.3
    cpe:2.3:a:mortbay:jetty:2.3.3
  • Mortbay Jetty 2.3.4
    cpe:2.3:a:mortbay:jetty:2.3.4
  • Mortbay Jetty 2.3.5
    cpe:2.3:a:mortbay:jetty:2.3.5
  • Mortbay Jetty 2.4.0
    cpe:2.3:a:mortbay:jetty:2.4.0
  • Mortbay Jetty 2.4.1
    cpe:2.3:a:mortbay:jetty:2.4.1
  • Mortbay Jetty 2.4.2
    cpe:2.3:a:mortbay:jetty:2.4.2
  • Mortbay Jetty 2.4.3
    cpe:2.3:a:mortbay:jetty:2.4.3
  • Mortbay Jetty 2.4.4
    cpe:2.3:a:mortbay:jetty:2.4.4
  • Mortbay Jetty 2.4.5
    cpe:2.3:a:mortbay:jetty:2.4.5
  • Mortbay Jetty 2.4.6
    cpe:2.3:a:mortbay:jetty:2.4.6
  • Mortbay Jetty 2.4.7
    cpe:2.3:a:mortbay:jetty:2.4.7
  • Mortbay Jetty 2.4.8
    cpe:2.3:a:mortbay:jetty:2.4.8
  • Mortbay Jetty 2.4.9
    cpe:2.3:a:mortbay:jetty:2.4.9
  • Mortbay Jetty 3.0
    cpe:2.3:a:mortbay:jetty:3.0
  • Mortbay Jetty 3.0.0
    cpe:2.3:a:mortbay:jetty:3.0.0
  • Mortbay Jetty 3.0.0 RC1
    cpe:2.3:a:mortbay:jetty:3.0.0:rc1
  • Mortbay Jetty 3.0.0 RC2
    cpe:2.3:a:mortbay:jetty:3.0.0:rc2
  • Mortbay Jetty 3.0.0 RC3
    cpe:2.3:a:mortbay:jetty:3.0.0:rc3
  • Mortbay Jetty 3.0.0 RC4
    cpe:2.3:a:mortbay:jetty:3.0.0:rc4
  • Mortbay Jetty 3.0.0 RC5
    cpe:2.3:a:mortbay:jetty:3.0.0:rc5
  • Mortbay Jetty 3.0.0 RC6
    cpe:2.3:a:mortbay:jetty:3.0.0:rc6
  • Mortbay Jetty 3.0.0 RC7
    cpe:2.3:a:mortbay:jetty:3.0.0:rc7
  • Mortbay Jetty 3.0.0 RC8
    cpe:2.3:a:mortbay:jetty:3.0.0:rc8
  • Mortbay Jetty 3.0.1
    cpe:2.3:a:mortbay:jetty:3.0.1
  • Mortbay Jetty 3.0.2
    cpe:2.3:a:mortbay:jetty:3.0.2
  • Mortbay Jetty 3.0.3
    cpe:2.3:a:mortbay:jetty:3.0.3
  • Mortbay Jetty 3.0.4
    cpe:2.3:a:mortbay:jetty:3.0.4
  • Mortbay Jetty 3.0.5
    cpe:2.3:a:mortbay:jetty:3.0.5
  • Mortbay Jetty 3.0.6
    cpe:2.3:a:mortbay:jetty:3.0.6
  • Mortbay Jetty 3.0.a0
    cpe:2.3:a:mortbay:jetty:3.0.a0
  • Mortbay Jetty 3.0.a1
    cpe:2.3:a:mortbay:jetty:3.0.a1
  • Mortbay Jetty 3.0.a2
    cpe:2.3:a:mortbay:jetty:3.0.a2
  • Mortbay Jetty 3.0.a3
    cpe:2.3:a:mortbay:jetty:3.0.a3
  • Mortbay Jetty 3.0.a4
    cpe:2.3:a:mortbay:jetty:3.0.a4
  • Mortbay Jetty 3.0.a5
    cpe:2.3:a:mortbay:jetty:3.0.a5
  • Mortbay Jetty 3.0.a6
    cpe:2.3:a:mortbay:jetty:3.0.a6
  • Mortbay Jetty 3.0.a7
    cpe:2.3:a:mortbay:jetty:3.0.a7
  • Mortbay Jetty 3.0.a8
    cpe:2.3:a:mortbay:jetty:3.0.a8
  • Mortbay Jetty 3.0.a9
    cpe:2.3:a:mortbay:jetty:3.0.a9
  • Mortbay Jetty 3.0.a90
    cpe:2.3:a:mortbay:jetty:3.0.a90
  • Mortbay Jetty 3.0.a91
    cpe:2.3:a:mortbay:jetty:3.0.a91
  • Mortbay Jetty 3.0.a92
    cpe:2.3:a:mortbay:jetty:3.0.a92
  • Mortbay Jetty 3.0.a93
    cpe:2.3:a:mortbay:jetty:3.0.a93
  • Mortbay Jetty 3.0.a94
    cpe:2.3:a:mortbay:jetty:3.0.a94
  • Mortbay Jetty 3.0.a95
    cpe:2.3:a:mortbay:jetty:3.0.a95
  • Mortbay Jetty 3.0.a96
    cpe:2.3:a:mortbay:jetty:3.0.a96
  • Mortbay Jetty 3.0.a97
    cpe:2.3:a:mortbay:jetty:3.0.a97
  • Mortbay Jetty 3.0.a98
    cpe:2.3:a:mortbay:jetty:3.0.a98
  • Mortbay Jetty 3.0.a99
    cpe:2.3:a:mortbay:jetty:3.0.a99
  • Mortbay Jetty 3.0.b01
    cpe:2.3:a:mortbay:jetty:3.0.b01
  • Mortbay Jetty 3.0.b02
    cpe:2.3:a:mortbay:jetty:3.0.b02
  • Mortbay Jetty 3.0.b03
    cpe:2.3:a:mortbay:jetty:3.0.b03
  • Mortbay Jetty 3.0.b04
    cpe:2.3:a:mortbay:jetty:3.0.b04
  • Mortbay Jetty 3.0.b05
    cpe:2.3:a:mortbay:jetty:3.0.b05
  • Mortbay Jetty 3.1 RC0
    cpe:2.3:a:mortbay:jetty:3.1:rc0
  • Mortbay Jetty 3.1 RC1
    cpe:2.3:a:mortbay:jetty:3.1:rc1
  • Mortbay Jetty 3.1 RC2
    cpe:2.3:a:mortbay:jetty:3.1:rc2
  • Mortbay Jetty 3.1 RC3
    cpe:2.3:a:mortbay:jetty:3.1:rc3
  • Mortbay Jetty 3.1 RC4
    cpe:2.3:a:mortbay:jetty:3.1:rc4
  • Mortbay Jetty 3.1 RC5
    cpe:2.3:a:mortbay:jetty:3.1:rc5
  • Mortbay Jetty 3.1 RC6
    cpe:2.3:a:mortbay:jetty:3.1:rc6
  • Mortbay Jetty 3.1 RC7
    cpe:2.3:a:mortbay:jetty:3.1:rc7
  • Mortbay Jetty 3.1 RC8
    cpe:2.3:a:mortbay:jetty:3.1:rc8
  • Mortbay Jetty 3.1 RC9
    cpe:2.3:a:mortbay:jetty:3.1:rc9
  • Mortbay Jetty 3.1.0
    cpe:2.3:a:mortbay:jetty:3.1.0
  • Mortbay Jetty 3.1.1
    cpe:2.3:a:mortbay:jetty:3.1.1
  • Mortbay Jetty 3.1.2
    cpe:2.3:a:mortbay:jetty:3.1.2
  • Mortbay Jetty 3.1.3
    cpe:2.3:a:mortbay:jetty:3.1.3
  • Mortbay Jetty 3.1.4
    cpe:2.3:a:mortbay:jetty:3.1.4
  • Mortbay Jetty 3.1.5
    cpe:2.3:a:mortbay:jetty:3.1.5
  • Mortbay Jetty 3.1.6
    cpe:2.3:a:mortbay:jetty:3.1.6
  • Mortbay Jetty 3.1.7
    cpe:2.3:a:mortbay:jetty:3.1.7
  • Mortbay Jetty 3.1.8
    cpe:2.3:a:mortbay:jetty:3.1.8
  • Mortbay Jetty 3.1.9
    cpe:2.3:a:mortbay:jetty:3.1.9
  • Mortbay Jetty 4.0 RC1
    cpe:2.3:a:mortbay:jetty:4.0:rc1
  • Mortbay Jetty 4.0 RC2
    cpe:2.3:a:mortbay:jetty:4.0:rc2
  • Mortbay Jetty 4.0 RC3
    cpe:2.3:a:mortbay:jetty:4.0:rc3
  • Mortbay Jetty 4.0.0
    cpe:2.3:a:mortbay:jetty:4.0.0
  • Mortbay Jetty 4.0.1
    cpe:2.3:a:mortbay:jetty:4.0.1
  • Mortbay Jetty 4.0.1 RC0
    cpe:2.3:a:mortbay:jetty:4.0.1:rc0
  • Mortbay Jetty 4.0.1 RC1
    cpe:2.3:a:mortbay:jetty:4.0.1:rc1
  • Mortbay Jetty 4.0.1 RC2
    cpe:2.3:a:mortbay:jetty:4.0.1:rc2
  • Mortbay Jetty 4.0.2
    cpe:2.3:a:mortbay:jetty:4.0.2
  • Mortbay Jetty 4.0.3
    cpe:2.3:a:mortbay:jetty:4.0.3
  • Mortbay Jetty 4.0.4
    cpe:2.3:a:mortbay:jetty:4.0.4
  • Mortbay Jetty 4.0.5
    cpe:2.3:a:mortbay:jetty:4.0.5
  • Mortbay Jetty 4.0.6
    cpe:2.3:a:mortbay:jetty:4.0.6
  • Mortbay Jetty 4.0.b0
    cpe:2.3:a:mortbay:jetty:4.0.b0
  • Mortbay Jetty 4.0.b1
    cpe:2.3:a:mortbay:jetty:4.0.b1
  • Mortbay Jetty 4.0.b2
    cpe:2.3:a:mortbay:jetty:4.0.b2
  • Mortbay Jetty 4.0.d0
    cpe:2.3:a:mortbay:jetty:4.0.d0
  • Mortbay Jetty 4.0.d1
    cpe:2.3:a:mortbay:jetty:4.0.d1
  • Mortbay Jetty 4.0.d2
    cpe:2.3:a:mortbay:jetty:4.0.d2
  • Mortbay Jetty 4.0.d3
    cpe:2.3:a:mortbay:jetty:4.0.d3
  • Mortbay Jetty 4.0.d4
    cpe:2.3:a:mortbay:jetty:4.0.d4
  • Mortbay Jetty 4.1.0
    cpe:2.3:a:mortbay:jetty:4.1.0
  • Mortbay Jetty 4.1.0 RC0
    cpe:2.3:a:mortbay:jetty:4.1.0:rc0
  • Mortbay Jetty 4.1.0 RC1
    cpe:2.3:a:mortbay:jetty:4.1.0:rc1
  • Mortbay Jetty 4.1.0 RC2
    cpe:2.3:a:mortbay:jetty:4.1.0:rc2
  • Mortbay Jetty 4.1.0 RC3
    cpe:2.3:a:mortbay:jetty:4.1.0:rc3
  • Mortbay Jetty 4.1.0 RC4
    cpe:2.3:a:mortbay:jetty:4.1.0:rc4
  • Mortbay Jetty 4.1.0 RC5
    cpe:2.3:a:mortbay:jetty:4.1.0:rc5
  • Mortbay Jetty 4.1.0 RC6
    cpe:2.3:a:mortbay:jetty:4.1.0:rc6
  • Mortbay Jetty 4.1.1
    cpe:2.3:a:mortbay:jetty:4.1.1
  • Mortbay Jetty 4.1.2
    cpe:2.3:a:mortbay:jetty:4.1.2
  • Mortbay Jetty 4.1.3
    cpe:2.3:a:mortbay:jetty:4.1.3
  • Mortbay Jetty 4.1.4
    cpe:2.3:a:mortbay:jetty:4.1.4
  • Mortbay Jetty 4.1.b0
    cpe:2.3:a:mortbay:jetty:4.1.b0
  • Mortbay Jetty 4.1.b1
    cpe:2.3:a:mortbay:jetty:4.1.b1
  • Mortbay Jetty 4.1.d0
    cpe:2.3:a:mortbay:jetty:4.1.d0
  • Mortbay Jetty 4.1.d1
    cpe:2.3:a:mortbay:jetty:4.1.d1
  • Mortbay Jetty 4.1.d2
    cpe:2.3:a:mortbay:jetty:4.1.d2
  • Mortbay Jetty 4.2
    cpe:2.3:a:mortbay:jetty:4.2
  • Mortbay Jetty 4.2.0
    cpe:2.3:a:mortbay:jetty:4.2.0
  • Mortbay Jetty 4.2.0 beta0
    cpe:2.3:a:mortbay:jetty:4.2.0:beta0
  • Mortbay Jetty 4.2.0 RC0
    cpe:2.3:a:mortbay:jetty:4.2.0:rc0
  • Mortbay Jetty 4.2.0 RC1
    cpe:2.3:a:mortbay:jetty:4.2.0:rc1
  • Mortbay Jetty 4.2.1
    cpe:2.3:a:mortbay:jetty:4.2.1
  • Mortbay Jetty 4.2.2
    cpe:2.3:a:mortbay:jetty:4.2.2
  • Mortbay Jetty 4.2.3
    cpe:2.3:a:mortbay:jetty:4.2.3
  • Mortbay Jetty 4.2.4
    cpe:2.3:a:mortbay:jetty:4.2.4
  • Mortbay Jetty 4.2.4 RC0
    cpe:2.3:a:mortbay:jetty:4.2.4:rc0
  • Mortbay Jetty 4.2.5
    cpe:2.3:a:mortbay:jetty:4.2.5
  • Mortbay Jetty 4.2.6
    cpe:2.3:a:mortbay:jetty:4.2.6
  • Mortbay Jetty 4.2.7
    cpe:2.3:a:mortbay:jetty:4.2.7
  • Mortbay Jetty 4.2.8_01
    cpe:2.3:a:mortbay:jetty:4.2.8_01
  • Mortbay Jetty 4.2.9
    cpe:2.3:a:mortbay:jetty:4.2.9
  • Mortbay Jetty 4.2.9 RC1
    cpe:2.3:a:mortbay:jetty:4.2.9:rc1
  • Mortbay Jetty 4.2.9 RC2
    cpe:2.3:a:mortbay:jetty:4.2.9:rc2
  • Mortbay Jetty 4.2.10
    cpe:2.3:a:mortbay:jetty:4.2.10
  • Mortbay Jetty 4.2.10 pre0
    cpe:2.3:a:mortbay:jetty:4.2.10:pre0
  • Mortbay Jetty 4.2.10 pre1
    cpe:2.3:a:mortbay:jetty:4.2.10:pre1
  • Mortbay Jetty 4.2.10 pre2
    cpe:2.3:a:mortbay:jetty:4.2.10:pre2
  • Mortbay Jetty 4.2.11
    cpe:2.3:a:mortbay:jetty:4.2.11
  • Mortbay Jetty 4.2.12
    cpe:2.3:a:mortbay:jetty:4.2.12
  • Mortbay Jetty 4.2.14
    cpe:2.3:a:mortbay:jetty:4.2.14
  • Mortbay Jetty 4.2.14 RC0
    cpe:2.3:a:mortbay:jetty:4.2.14:rc0
  • Mortbay Jetty 4.2.14 RC1
    cpe:2.3:a:mortbay:jetty:4.2.14:rc1
  • Mortbay Jetty 4.2.15
    cpe:2.3:a:mortbay:jetty:4.2.15
  • Mortbay Jetty 4.2.15 RC0
    cpe:2.3:a:mortbay:jetty:4.2.15:rc0
  • Mortbay Jetty 4.2.16
    cpe:2.3:a:mortbay:jetty:4.2.16
  • Mortbay Jetty 4.2.17
    cpe:2.3:a:mortbay:jetty:4.2.17
  • Mortbay Jetty 4.2.18
    cpe:2.3:a:mortbay:jetty:4.2.18
  • Mortbay Jetty 4.2.19
    cpe:2.3:a:mortbay:jetty:4.2.19
  • Mortbay Jetty 4.2.20
    cpe:2.3:a:mortbay:jetty:4.2.20
  • Mortbay Jetty 4.2.20 RC0
    cpe:2.3:a:mortbay:jetty:4.2.20:rc0
  • Mortbay Jetty 4.2.21
    cpe:2.3:a:mortbay:jetty:4.2.21
  • Mortbay Jetty 4.2.22
    cpe:2.3:a:mortbay:jetty:4.2.22
  • Mortbay Jetty 4.2.23
    cpe:2.3:a:mortbay:jetty:4.2.23
  • Mortbay Jetty 4.2.23 RC0
    cpe:2.3:a:mortbay:jetty:4.2.23:rc0
  • Mortbay Jetty 4.2.24
    cpe:2.3:a:mortbay:jetty:4.2.24
  • Mortbay Jetty 4.2.24 RC0
    cpe:2.3:a:mortbay:jetty:4.2.24:rc0
  • Mortbay Jetty 4.2.24 RC1
    cpe:2.3:a:mortbay:jetty:4.2.24:rc1
  • Mortbay Jetty 4.2.25
    cpe:2.3:a:mortbay:jetty:4.2.25
  • Mortbay Jetty 4.2.26
    cpe:2.3:a:mortbay:jetty:4.2.26
  • Mortbay Jetty 4.2.27
    cpe:2.3:a:mortbay:jetty:4.2.27
  • Mortbay Jetty 5.0 alpha0
    cpe:2.3:a:mortbay:jetty:5.0:alpha0
  • Mortbay Jetty 5.0 alpha1
    cpe:2.3:a:mortbay:jetty:5.0:alpha1
  • Mortbay Jetty 5.0 alpha2
    cpe:2.3:a:mortbay:jetty:5.0:alpha2
  • Mortbay Jetty 5.0 alpha3
    cpe:2.3:a:mortbay:jetty:5.0:alpha3
  • Mortbay Jetty 5.0 beta0
    cpe:2.3:a:mortbay:jetty:5.0:beta0
  • Mortbay Jetty 5.0 beta1
    cpe:2.3:a:mortbay:jetty:5.0:beta1
  • Mortbay Jetty 5.0 beta2
    cpe:2.3:a:mortbay:jetty:5.0:beta2
  • Mortbay Jetty 5.0 RC1
    cpe:2.3:a:mortbay:jetty:5.0:rc1
  • Mortbay Jetty 5.0 RC2
    cpe:2.3:a:mortbay:jetty:5.0:rc2
  • Mortbay Jetty 5.0 RC3
    cpe:2.3:a:mortbay:jetty:5.0:rc3
  • Mortbay Jetty 5.0 RC4
    cpe:2.3:a:mortbay:jetty:5.0:rc4
  • Mortbay Jetty 5.0.0
    cpe:2.3:a:mortbay:jetty:5.0.0
  • Mortbay Jetty 5.0.0 RC0
    cpe:2.3:a:mortbay:jetty:5.0.0:rc0
  • Mortbay Jetty 5.1
    cpe:2.3:a:mortbay:jetty:5.1
  • Mortbay Jetty 5.1 RC0
    cpe:2.3:a:mortbay:jetty:5.1:rc0
  • Mortbay Jetty 5.1 RC1
    cpe:2.3:a:mortbay:jetty:5.1:rc1
  • Mortbay Jetty 5.1.0
    cpe:2.3:a:mortbay:jetty:5.1.0
  • Mortbay Jetty 5.1.1
    cpe:2.3:a:mortbay:jetty:5.1.1
  • Mortbay Jetty 5.1.1 RC0
    cpe:2.3:a:mortbay:jetty:5.1.1:rc0
  • Mortbay Jetty 5.1.1 RC1
    cpe:2.3:a:mortbay:jetty:5.1.1:rc1
  • Mortbay Jetty 5.1.2
    cpe:2.3:a:mortbay:jetty:5.1.2
  • Mortbay Jetty 5.1.2 pre0
    cpe:2.3:a:mortbay:jetty:5.1.2:pre0
  • Mortbay Jetty 5.1.3
    cpe:2.3:a:mortbay:jetty:5.1.3
  • Mortbay Jetty 5.1.3 RC0
    cpe:2.3:a:mortbay:jetty:5.1.3:rc0
  • Mortbay Jetty 5.1.3 RC1
    cpe:2.3:a:mortbay:jetty:5.1.3:rc1
  • Mortbay Jetty 5.1.3 RC2
    cpe:2.3:a:mortbay:jetty:5.1.3:rc2
  • Mortbay Jetty 5.1.3 RC3
    cpe:2.3:a:mortbay:jetty:5.1.3:rc3
  • Mortbay Jetty 5.1.3 RC4
    cpe:2.3:a:mortbay:jetty:5.1.3:rc4
  • Mortbay Jetty 5.1.4
    cpe:2.3:a:mortbay:jetty:5.1.4
  • Mortbay Jetty 5.1.4 RC0
    cpe:2.3:a:mortbay:jetty:5.1.4:rc0
  • Mortbay Jetty 5.1.5
    cpe:2.3:a:mortbay:jetty:5.1.5
  • Mortbay Jetty 5.1.5 RC0
    cpe:2.3:a:mortbay:jetty:5.1.5:rc0
  • Mortbay Jetty 5.1.5 RC1
    cpe:2.3:a:mortbay:jetty:5.1.5:rc1
  • Mortbay Jetty 5.1.5 RC2
    cpe:2.3:a:mortbay:jetty:5.1.5:rc2
  • Mortbay Jetty 5.1.6
    cpe:2.3:a:mortbay:jetty:5.1.6
  • Mortbay Jetty 5.1.7
    cpe:2.3:a:mortbay:jetty:5.1.7
  • Mortbay Jetty 5.1.7 RC0
    cpe:2.3:a:mortbay:jetty:5.1.7:rc0
  • Mortbay Jetty 5.1.8
    cpe:2.3:a:mortbay:jetty:5.1.8
  • Mortbay Jetty 5.1.9
    cpe:2.3:a:mortbay:jetty:5.1.9
  • Mortbay Jetty 5.1.10
    cpe:2.3:a:mortbay:jetty:5.1.10
  • Mortbay Jetty 5.1.11
    cpe:2.3:a:mortbay:jetty:5.1.11
  • Mortbay Jetty 5.1.11 RC0
    cpe:2.3:a:mortbay:jetty:5.1.11:rc0
  • Mortbay Jetty 5.1.12
    cpe:2.3:a:mortbay:jetty:5.1.12
  • Mortbay Jetty 5.1.13
    cpe:2.3:a:mortbay:jetty:5.1.13
  • Mortbay Jetty 5.1.14
    cpe:2.3:a:mortbay:jetty:5.1.14
  • Mortbay Jetty 6.0.0
    cpe:2.3:a:mortbay:jetty:6.0.0
  • Mortbay Jetty 6.0.0 alpha0
    cpe:2.3:a:mortbay:jetty:6.0.0:alpha0
  • Mortbay Jetty 6.0.0 alpha1
    cpe:2.3:a:mortbay:jetty:6.0.0:alpha1
  • Mortbay Jetty 6.0.0 alpha2
    cpe:2.3:a:mortbay:jetty:6.0.0:alpha2
  • Mortbay Jetty 6.0.0 alpha3
    cpe:2.3:a:mortbay:jetty:6.0.0:alpha3
  • Mortbay Jetty 6.0.0 beta0
    cpe:2.3:a:mortbay:jetty:6.0.0:beta0
  • Mortbay Jetty 6.0.0 beta1
    cpe:2.3:a:mortbay:jetty:6.0.0:beta1
  • Mortbay Jetty 6.0.0 beta10
    cpe:2.3:a:mortbay:jetty:6.0.0:beta10
  • Mortbay Jetty 6.0.0 beta11
    cpe:2.3:a:mortbay:jetty:6.0.0:beta11
  • Mortbay Jetty 6.0.0 beta12
    cpe:2.3:a:mortbay:jetty:6.0.0:beta12
  • Mortbay Jetty 6.0.0 beta14
    cpe:2.3:a:mortbay:jetty:6.0.0:beta14
  • Mortbay Jetty 6.0.0 beta15
    cpe:2.3:a:mortbay:jetty:6.0.0:beta15
  • Mortbay Jetty 6.0.0 beta16
    cpe:2.3:a:mortbay:jetty:6.0.0:beta16
  • Mortbay Jetty 6.0.0 beta17
    cpe:2.3:a:mortbay:jetty:6.0.0:beta17
  • Mortbay Jetty 6.0.0 beta2
    cpe:2.3:a:mortbay:jetty:6.0.0:beta2
  • Mortbay Jetty 6.0.0 beta3
    cpe:2.3:a:mortbay:jetty:6.0.0:beta3
  • Mortbay Jetty 6.0.0 beta4
    cpe:2.3:a:mortbay:jetty:6.0.0:beta4
  • Mortbay Jetty 6.0.0 beta5
    cpe:2.3:a:mortbay:jetty:6.0.0:beta5
  • Mortbay Jetty 6.0.0 beta6
    cpe:2.3:a:mortbay:jetty:6.0.0:beta6
  • Mortbay Jetty 6.0.0 beta7
    cpe:2.3:a:mortbay:jetty:6.0.0:beta7
  • Mortbay Jetty 6.0.0 beta8
    cpe:2.3:a:mortbay:jetty:6.0.0:beta8
  • Mortbay Jetty 6.0.0 beta9
    cpe:2.3:a:mortbay:jetty:6.0.0:beta9
  • Mortbay Jetty 6.0.0 betax
    cpe:2.3:a:mortbay:jetty:6.0.0:betax
  • Mortbay Jetty 6.0.0 RC0
    cpe:2.3:a:mortbay:jetty:6.0.0:rc0
  • Mortbay Jetty 6.0.0 RC1
    cpe:2.3:a:mortbay:jetty:6.0.0:rc1
  • Mortbay Jetty 6.0.0 RC2
    cpe:2.3:a:mortbay:jetty:6.0.0:rc2
  • Mortbay Jetty 6.0.0 RC3
    cpe:2.3:a:mortbay:jetty:6.0.0:rc3
  • Mortbay Jetty 6.0.0 RC4
    cpe:2.3:a:mortbay:jetty:6.0.0:rc4
  • Mortbay Jetty 6.0.1
    cpe:2.3:a:mortbay:jetty:6.0.1
  • Mortbay Jetty 6.0.2
    cpe:2.3:a:mortbay:jetty:6.0.2
  • Mortbay Jetty 6.1.0
    cpe:2.3:a:mortbay:jetty:6.1.0
  • Mortbay Jetty 6.1.0 pre0
    cpe:2.3:a:mortbay:jetty:6.1.0:pre0
  • Mortbay Jetty 6.1.0 pre1
    cpe:2.3:a:mortbay:jetty:6.1.0:pre1
  • Mortbay Jetty 6.1.0 pre2
    cpe:2.3:a:mortbay:jetty:6.1.0:pre2
  • Mortbay Jetty 6.1.0 pre3
    cpe:2.3:a:mortbay:jetty:6.1.0:pre3
  • Mortbay Jetty 6.1.0 RC0
    cpe:2.3:a:mortbay:jetty:6.1.0:rc0
  • Mortbay Jetty 6.1.0 RC1
    cpe:2.3:a:mortbay:jetty:6.1.0:rc1
  • Mortbay Jetty 6.1.0 RC2
    cpe:2.3:a:mortbay:jetty:6.1.0:rc2
  • Mortbay Jetty 6.1.0 RC3
    cpe:2.3:a:mortbay:jetty:6.1.0:rc3
  • Mortbay Jetty 6.1.1
    cpe:2.3:a:mortbay:jetty:6.1.1
  • Mortbay Jetty 6.1.1 RC0
    cpe:2.3:a:mortbay:jetty:6.1.1:rc0
  • Mortbay Jetty 6.1.2
    cpe:2.3:a:mortbay:jetty:6.1.2
  • Mortbay Jetty 6.1.2 pre0
    cpe:2.3:a:mortbay:jetty:6.1.2:pre0
  • Mortbay Jetty 6.1.2 pre1
    cpe:2.3:a:mortbay:jetty:6.1.2:pre1
  • Mortbay Jetty 6.1.2 RC0
    cpe:2.3:a:mortbay:jetty:6.1.2:rc0
  • Mortbay Jetty 6.1.2 RC1
    cpe:2.3:a:mortbay:jetty:6.1.2:rc1
  • Mortbay Jetty 6.1.2 RC2
    cpe:2.3:a:mortbay:jetty:6.1.2:rc2
  • Mortbay Jetty 6.1.2 RC3
    cpe:2.3:a:mortbay:jetty:6.1.2:rc3
  • Mortbay Jetty 6.1.2 RC4
    cpe:2.3:a:mortbay:jetty:6.1.2:rc4
  • Mortbay Jetty 6.1.2 RC5
    cpe:2.3:a:mortbay:jetty:6.1.2:rc5
  • Mortbay Jetty 6.1.3
    cpe:2.3:a:mortbay:jetty:6.1.3
  • Mortbay Jetty 6.1.4
    cpe:2.3:a:mortbay:jetty:6.1.4
  • Mortbay Jetty 6.1.4 RC0
    cpe:2.3:a:mortbay:jetty:6.1.4:rc0
  • Mortbay Jetty 6.1.4 RC1
    cpe:2.3:a:mortbay:jetty:6.1.4:rc1
  • Mortbay Jetty 6.1.5
    cpe:2.3:a:mortbay:jetty:6.1.5
  • Mortbay Jetty 6.1.5 RC0
    cpe:2.3:a:mortbay:jetty:6.1.5:rc0
  • Mortbay Jetty 6.1.6
    cpe:2.3:a:mortbay:jetty:6.1.6
  • Mortbay Jetty 6.1.6 RC0
    cpe:2.3:a:mortbay:jetty:6.1.6:rc0
  • Mortbay Jetty 6.1.6 RC1
    cpe:2.3:a:mortbay:jetty:6.1.6:rc1
  • Mortbay Jetty 6.1.7
    cpe:2.3:a:mortbay:jetty:6.1.7
  • Mortbay Jetty 6.1.8
    cpe:2.3:a:mortbay:jetty:6.1.8
  • Mortbay Jetty 6.1.9
    cpe:2.3:a:mortbay:jetty:6.1.9
  • Mortbay Jetty 6.1.10
    cpe:2.3:a:mortbay:jetty:6.1.10
  • Mortbay Jetty 6.1.11
    cpe:2.3:a:mortbay:jetty:6.1.11
  • Mortbay Jetty 6.1.12
    cpe:2.3:a:mortbay:jetty:6.1.12
  • Mortbay Jetty 6.1.12 RC1
    cpe:2.3:a:mortbay:jetty:6.1.12:rc1
  • Mortbay Jetty 6.1.12 RC2
    cpe:2.3:a:mortbay:jetty:6.1.12:rc2
  • Mortbay Jetty 6.1.12 RC3
    cpe:2.3:a:mortbay:jetty:6.1.12:rc3
  • Mortbay Jetty 6.1.12 RC4
    cpe:2.3:a:mortbay:jetty:6.1.12:rc4
  • Mortbay Jetty 6.1.12 RC5
    cpe:2.3:a:mortbay:jetty:6.1.12:rc5
  • Mortbay Jetty 6.1.14
    cpe:2.3:a:mortbay:jetty:6.1.14
  • Mortbay Jetty 6.1.15
    cpe:2.3:a:mortbay:jetty:6.1.15
  • Mortbay Jetty 6.1.15 pre0
    cpe:2.3:a:mortbay:jetty:6.1.15:pre0
  • Mortbay Jetty 6.1.15 RC2
    cpe:2.3:a:mortbay:jetty:6.1.15:rc2
  • Mortbay Jetty 6.1.15 RC3
    cpe:2.3:a:mortbay:jetty:6.1.15:rc3
  • Mortbay Jetty 6.1.15 RC4
    cpe:2.3:a:mortbay:jetty:6.1.15:rc4
  • Mortbay Jetty 6.1.15 RC5
    cpe:2.3:a:mortbay:jetty:6.1.15:rc5
  • Mortbay Jetty 6.1.16
    cpe:2.3:a:mortbay:jetty:6.1.16
  • Mortbay Jetty 6.1.19
    cpe:2.3:a:mortbay:jetty:6.1.19
  • Mortbay Jetty 6.1.20
    cpe:2.3:a:mortbay:jetty:6.1.20
  • Mortbay Jetty 6.1.21
    cpe:2.3:a:mortbay:jetty:6.1.21
  • Mortbay Jetty 7.0
    cpe:2.3:a:mortbay:jetty:7.0.0
  • Mortbay Jetty 7.0.0 M1
    cpe:2.3:a:mortbay:jetty:7.0.0:m1
  • Mortbay Jetty 7.0.0 M2
    cpe:2.3:a:mortbay:jetty:7.0.0:m2
  • Mortbay Jetty 7.0.0 pre0
    cpe:2.3:a:mortbay:jetty:7.0.0:pre0
  • Mortbay Jetty 7.0.0 pre1
    cpe:2.3:a:mortbay:jetty:7.0.0:pre1
  • Mortbay Jetty 7.0.0 pre3
    cpe:2.3:a:mortbay:jetty:7.0.0:pre3
  • Mortbay Jetty 8.1.0 Release Candidate 2
    cpe:2.3:a:mortbay:jetty:8.1.0:rc2
CVSS
Base: 5.0 (as of 25-04-2016 - 14:23)
Impact:
Exploitability:
CWE CWE-310
CAPEC
  • Signature Spoofing by Key Recreation
    An attacker obtains an authoritative or reputable signer's private signature key by exploiting a cryptographic weakness in the signature algorithm or pseudorandom number generation and then uses this key to forge signatures from the original signer to mislead a victim into performing actions that benefit the attacker.
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
nessus via4
  • NASL family Misc.
    NASL id ORACLE_ENTERPRISE_MANAGER_JAN_2015_CPU.NASL
    description The version of Oracle Enterprise Manager Cloud Control installed on the remote host is affected by vulnerabilities in the following subcomponents of the Enterprise Manager Base Platform component : - Agent - UI Framework - Process Management & Notification Note that the product was formerly known as the Enterprise Manager Grid Control.
    last seen 2019-02-21
    modified 2018-11-15
    plugin id 80966
    published 2015-01-26
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=80966
    title Oracle Enterprise Manager Cloud Control Multiple Vulnerabilities (January 2015 CPU)
  • NASL family Fedora Local Security Checks
    NASL id FEDORA_2012-0730.NASL
    description Back-port of upstream jetty patches for CVE-2011-4461 - hash table collisions DoS. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2018-11-28
    plugin id 58461
    published 2012-03-26
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=58461
    title Fedora 16 : jetty-6.1.26-8.fc16 (2012-0730)
  • NASL family SuSE Local Security Checks
    NASL id SUSE_11_4_JETTY5-120215.NASL
    description jetty5 was prone to a remotely exploitable Denial of Service flaw via hash collisions (CVE-2011-4461).
    last seen 2019-02-21
    modified 2018-11-10
    plugin id 75875
    published 2014-06-13
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=75875
    title openSUSE Security Update : jetty5 (openSUSE-SU-2012:0262-1)
  • NASL family SuSE Local Security Checks
    NASL id OPENSUSE-2012-128.NASL
    description jetty5 was prone to a remotely exploitable Denial of Service flaw via hash collisions
    last seen 2019-02-21
    modified 2016-10-13
    plugin id 74553
    published 2014-06-13
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=74553
    title openSUSE Security Update : jetty5 (openSUSE-2012-128)
  • NASL family Fedora Local Security Checks
    NASL id FEDORA_2012-0752.NASL
    description Back-port of upstream jetty patches for CVE-2011-4461, hash DOS. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2016-10-18
    plugin id 58462
    published 2012-03-26
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=58462
    title Fedora 15 : jetty-6.1.26-7.fc15 (2012-0752)
  • NASL family Ubuntu Local Security Checks
    NASL id UBUNTU_USN-1429-1.NASL
    description It was discovered that Jetty computed hash values for form parameters without restricting the ability to trigger hash collisions predictably. This could allow a remote attacker to cause a denial of service by sending many crafted parameters. Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2018-12-01
    plugin id 58892
    published 2012-04-27
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=58892
    title Ubuntu 10.04 LTS / 11.04 : jetty vulnerability (USN-1429-1)
refmap via4
bugtraq 20111228 n.runs-SA-2011.004 - web programming languages and platforms - DoS through hash table
cert-vn VU#903934
confirm
hp HPSBST03346
misc
sectrack 1026475
secunia
  • 47408
  • 48981
ubuntu USN-1429-1
xf jetty-hash-dos(72017)
Last major update 22-08-2016 - 22:04
Published 29-12-2011 - 20:55
Last modified 08-03-2019 - 06:29
Back to Top