CVE-2007-5615

N/A Unknown

Published: December 05, 2007 Modified: April 23, 2026

Description

CRLF injection vulnerability in Mortbay Jetty before 6.1.6rc0 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00002.html

Source: cret@cert.org

http://osvdb.org/42495

Source: cret@cert.org

http://secunia.com/advisories/27925

Source: cret@cert.org

http://secunia.com/advisories/30941

Source: cret@cert.org

http://secunia.com/advisories/35143

Source: cret@cert.org

http://svn.codehaus.org/jetty/jetty/trunk/VERSION.txt

Source: cret@cert.org

http://www.kb.cert.org/vuls/id/212984

Source: cret@cert.org

US Government Resource

http://www.securityfocus.com/bid/26696

Source: cret@cert.org

https://www.redhat.com/archives/fedora-package-announce/2008-July/msg00227.html

Source: cret@cert.org

https://www.redhat.com/archives/fedora-package-announce/2008-July/msg00250.html

Source: cret@cert.org

http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00002.html