Vulnerabilities > CVE-2002-1533 - Unspecified vulnerability in Jetty 4.1.0Rc4
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN jetty
exploit available
Summary
Cross-site scripting (XSS) vulnerability in Jetty JSP servlet engine allows remote attackers to insert arbitrary HTML or script via an HTTP request to a .jsp file whose name contains the malicious script and some encoded linefeed characters (%0a).
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | Jetty 4.1 Servlet Engine Cross Site Scripting Vulnerability. CVE-2002-1533. Webapps exploit for jsp platform |
| id | EDB-ID:21875 |
| last seen | 2016-02-02 |
| modified | 2002-09-28 |
| published | 2002-09-28 |
| reporter | Skinnay |
| source | https://www.exploit-db.com/download/21875/ |
| title | Jetty 4.1 Servlet Engine Cross-Site Scripting Vulnerability |
References
- http://archives.neohapsis.com/archives/bugtraq/2002-09/0337.html
- http://archives.neohapsis.com/archives/bugtraq/2002-09/0337.html
- http://www.iss.net/security_center/static/10219.php
- http://www.iss.net/security_center/static/10219.php
- http://www.securityfocus.com/bid/5821
- http://www.securityfocus.com/bid/5821