CVE-2006-6969
Current Description
Jetty before 4.2.27, 5.1 before 5.1.12, 6.0 before 6.0.2, and 6.1 before 6.1.0pre3 generates predictable session identifiers using java.util.random, which makes it easier for remote attackers to guess a session identifier through brute force attacks, bypass authentication requirements, and possibly conduct cross-site request forgery attacks.
Basic Data
| Published | February 07, 2007 |
|---|
| Last Modified | October 16, 2018 |
|---|
| Assigner | cve@mitre.org |
|---|
| Data Type | CVE |
|---|
| Data Format | MITRE |
|---|
| Data Version | 4.0 |
|---|
| Problem Type | NVD-CWE-Other |
|---|
| CVE Data Version | 4.0 |
|---|
Base Metric V2
| CVSS 2 - Version | 2.0 |
|---|
| CVSS 2 - Vector String | AV:N/AC:M/Au:N/C:P/I:P/A:P |
|---|
| CVSS 2 - Access Vector | NETWORK |
|---|
| CVSS 2 - Access Complexity | MEDIUM |
|---|
| CVSS 2 - Authentication | NONE |
|---|
| CVSS 2 - Confidentiality Impact | PARTIAL |
|---|
| CVSS 2 - Availability Impact | PARTIAL |
|---|
| CVSS 2 - Base Score | 6.8 |
|---|
| Severity | MEDIUM |
|---|
| Exploitability Score | 8.6 |
|---|
| Impact Score | 6.4 |
|---|
| Obtain All Privilege | false |
|---|
| Obtain User Privilege | false |
|---|
| Obtain Other Privilege | true |
|---|
Base Metric V3
No data provided.
Configurations
-
OR - Configuration 1
| Cpe Version | Part | Vendor | Product | Version | Update | Edition | Language | SW Edition | Target SW | Target HW | Other | Version Start Including | Version End Including | Version Start Excluding | Version End Excluding |
|---|
| 2.3 | Application | Jetty | Jetty Http Server | 4.2.9 | * | * | * | * | * | * | * | � | � | � | � |
| 2.3 | Application | Jetty | Jetty Http Server | 4.2.11 | * | * | * | * | * | * | * | � | � | � | � |
| 2.3 | Application | Jetty | Jetty Http Server | 4.2.12 | * | * | * | * | * | * | * | � | � | � | � |
| 2.3 | Application | Jetty | Jetty Http Server | 4.2.14 | * | * | * | * | * | * | * | � | � | � | � |
| 2.3 | Application | Jetty | Jetty Http Server | 4.2.15 | * | * | * | * | * | * | * | � | � | � | � |
| 2.3 | Application | Jetty | Jetty Http Server | 4.2.16 | * | * | * | * | * | * | * | � | � | � | � |
| 2.3 | Application | Jetty | Jetty Http Server | 4.2.17 | * | * | * | * | * | * | * | � | � | � | � |
| 2.3 | Application | Jetty | Jetty Http Server | 4.2.18 | * | * | * | * | * | * | * | � | � | � | � |
| 2.3 | Application | Jetty | Jetty Http Server | 4.2.19 | * | * | * | * | * | * | * | � | � | � | � |
| 2.3 | Application | Jetty | Jetty Http Server | 4.2.24 | * | * | * | * | * | * | * | � | � | � | � |
| 2.3 | Application | Jetty | Jetty Http Server | 5.1.11 | * | * | * | * | * | * | * | � | � | � | � |
| 2.3 | Application | Jetty | Jetty Http Server | 6.0.1 | * | * | * | * | * | * | * | � | � | � | � |
| 2.3 | Application | Jetty | Jetty Http Server | 6.1.0_pre2 | * | * | * | * | * | * | * | � | � | � | � |
Vulnerable Software List
| Vendor | Product | Versions |
| Jetty
|
Jetty Http Server |
4.2.11, 4.2.12, 4.2.14, 4.2.15, 4.2.16, 4.2.17, 4.2.18, 4.2.19, 4.2.24, 4.2.9, 5.1.11, 6.0.1, 6.1.0_pre2 |
References
| Name | Source | URL | Tags |
|---|
| 20070206 Re: Jetty Session ID Prediction | http://archives.neohapsis.com/archives/bugtraq/2007-02/0070.html | BUGTRAQ | |
| http://fisheye.codehaus.org/changelog/jetty/?cs=1274 | http://fisheye.codehaus.org/changelog/jetty/?cs=1274 | CONFIRM | |
| 33108 | http://osvdb.org/33108 | OSVDB | |
| 24070 | http://secunia.com/advisories/24070 | SECUNIA | Vendor Advisory |
| 20070205 Jetty Session ID Prediction | http://www.securityfocus.com/archive/1/459164/100/0/threaded | BUGTRAQ | |
| 22405 | http://www.securityfocus.com/bid/22405 | BID | Vendor Advisory |
| ADV-2007-0497 | http://www.vupen.com/english/advisories/2007/0497 | VUPEN | |
| jetty-sessionid-session-hijacking(32240) | https://exchange.xforce.ibmcloud.com/vulnerabilities/32240 | XF | |
Follow @discotekdotca