Directory Traversal Vulnerability in Jetty by Mort Bay Consulting
CVE-2006-2758

Currently unrated

Key Information:

Vendor: Jetty
Status: Jetty
Vendor: CVE Published:; 2 June 2006

What is CVE-2006-2758?

A directory traversal vulnerability exists in Jetty 6.0.x beta16 that allows remote attackers to exploit the server by manipulating the URL. By using encoded sequences like %2e%2e%5c (which represents ../), attackers can potentially gain unauthorized access to arbitrary files on the server, which could lead to further exploitation or leakage of sensitive information. This vulnerability underscores the importance of securing web server configurations to prevent unauthorized file system access.

References

http://securitytracker.com/id?1016168

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
Jun 2, 2006
Vulnerability Reserved
Jun 1, 2006