Jetty HttpParser Error Remote Memory Disclosure

Medium Nessus Plugin ID 81576

Synopsis

The remote web server is affected by a remote memory disclosure vulnerability.

Description

The remote instance of Jetty is affected by a remote memory disclosure vulnerability in the HttpParser module due to incorrect handling of illegal characters in header values. When an illegal character is encountered in an HTTP request, Jetty writes a response in a shared buffer that was used in a previous request. Jetty's response to the client includes this shared buffer which contains potentially sensitive data from the previous request. An attacker, using specially crafted requests containing variable length strings of illegal characters, can steal sensitive header data (e.g. cookies, authentication tokens) or sensitive POST data (e.g. credentials).

Solution

Upgrade to Jetty 9.2.9.v20150224 or later. For Jetty 9.3.x, contact the vendor for a solution.

See Also

http://www.nessus.org/u?b8e07913

https://bugs.eclipse.org/bugs/show_bug.cgi?id=460642

http://www.nessus.org/u?f918c477

Plugin Details

Severity: Medium

ID: 81576

File Name: jetty_cve-2015-2080.nasl

Version: 1.5

Type: remote

Family: Web Servers

Published: 2015/02/27

Updated: 2018/11/15

Dependencies: 10107

Risk Information

Risk Factor: Medium

CVSS v2.0

Base Score: 5

Temporal Score: 3.9

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

Temporal Vector: CVSS2#E:POC/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/a:mortbay:jetty

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2015/02/24

Vulnerability Publication Date: 2015/02/24

Reference Information

CVE: CVE-2015-2080

BID: 72768