CVE-2016-4800
critical
CVSS v3
9.8
CVSS v2
7.5
VIR risk
9.8
Description
The path normalization mechanism in PathResource class in Eclipse Jetty 9.3.x before 9.3.9 on Windows allows remote attackers to bypass protected resource restrictions and other security constraints via a URL with certain escaped characters, related to backslashes.
Predictions
Exploit likelihood
97%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: debian — https://security-tracker.debian.org/tracker/CVE-2016-4800
Vendor advisory: cve@mitre.org — http://www.ocert.org/advisories/ocert-2016-001.html
Vendor advisory: cve@mitre.org — http://dev.eclipse.org/mhonarc/lists/jetty-announce/msg00092.html
OS impact
| OS | Version | Status | Fixed in |
|---|---|---|---|
| debian | bookworm | fixed | 0 |
| debian | bullseye | fixed | 0 |
| debian | forky | fixed | 0 |
| debian | sid | fixed | 0 |
| debian | trixie | fixed | 0 |
Package impact
| Ecosystem | Package | Vulnerable | Fixed |
|---|---|---|---|
| Maven | org.eclipse.jetty:jetty-server | >=9.3.0,<9.3.9 | 9.3.9 |
References
- http://dev.eclipse.org/mhonarc/lists/jetty-announce/msg00092.html
- http://www.ocert.org/advisories/ocert-2016-001.html
- http://www.securityfocus.com/bid/90945
- http://www.zerodayinitiative.com/advisories/ZDI-16-362
- https://security.netapp.com/advisory/ntap-20190307-0006/
- https://www.oracle.com/security-alerts/cpuoct2020.html
- https://nvd.nist.gov/vuln/detail/CVE-2016-4800
- https://github.com/advisories/GHSA-872g-2h8h-362q
- https://security.netapp.com/advisory/ntap-20190307-0006
- https://security-tracker.debian.org/tracker/CVE-2016-4800
CWEs
CWE-284
Verify integrity in audit chain (admin only). AS-IS.