CVE-2004-2381

Published Dec 31, 2004
Last updated 7 years ago
CVSS info 5.0
Overview

Description: HttpRequest.java in Jetty HTTP Server before 4.2.19 allows remote attackers to cause denial of service (memory usage and application crash) via HTTP requests with a large Content-Length.
Source: cve@mitre.org
NVD status: Modified
Risk scores

CVSS 2.0

Type: Primary
Base score: 5
Impact score: 2.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:N/I:N/A:P
Weaknesses

nvd@nist.gov: NVD-CWE-Other
Hype score: Not currently trending
Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D9B24CDC-1E5B-47C9-8192-F0D1116D90A3"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F45803E0-D1A7-400D-9CA5-50253AC32401"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.0.1_rc0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EA393091-0662-48B2-8907-99F26477244C"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.0.1_rc1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "22D6CFD2-DBAF-4B4A-B235-98BB4826DBF8"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.0.1_rc2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E0CB88D1-A7C1-47A4-9478-B47D945B3905"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7F059700-FAAF-4F9B-9973-C79A0F6D8299"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.0.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3446B000-66B2-42F7-B16D-1D0F06B5A874"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.0.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C0E83837-A974-42B8-8E0B-2DCFE55F6B7B"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.0.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "38AD7BA2-57EA-42DA-9CFE-FED77A912FFA"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.0.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "71842778-8CE8-4545-B527-994D4BEB92AD"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.0.b0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "464C37F4-F1EC-4827-8C02-0F7253A29FCB"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.0.b1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "81965444-CC2B-4002-A7FB-D3EE91AC4AB7"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.0.b2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CB7A0330-CDC2-4D95-BF70-E846C480C025"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.0.d0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5E4A7F11-5826-45BE-9E69-717BCE5DAF45"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.0.d1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E4528F32-6D57-46CF-B9CF-EB6097033477"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.0.d2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5DE9B195-5072-4CA6-984B-A97398789131"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.0.d3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B156DC85-BD41-49CD-995E-5F144934BE74"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.0.d4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F6C484A2-DDBF-4BEC-89D1-EED071680AE1"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.0_rc1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A338593D-C6A7-429C-B440-26F3CCC54C68"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.0_rc2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "94FADCB4-DE60-463D-8B59-7392CD734603"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.0_rc3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "65CD5D1D-259D-4CA5-A07C-ECEBE8540265"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "85E64C7C-84FA-4AF0-ADA3-3708DADF35C2"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.1.0_rc0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "641E07B7-6433-41D5-B420-29FA254F2D27"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.1.0_rc1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "268613F8-F1D5-4691-A8B9-6AD7B639D4E0"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.1.0_rc2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CC344802-D51B-4256-B52A-29789ACCF4EB"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.1.0_rc3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "79B4593B-8780-4774-BC1B-923824AB7B7E"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.1.0_rc4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FD27A440-D06A-47D5-97FF-4B56EDD3E8B0"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.1.0_rc5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1651BA40-57D1-40BC-AAFE-4ECE34FF1254"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.1.0_rc6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C62CDC27-A264-4E8E-894D-92AD10DC8C01"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "35508567-7C83-4C4B-961B-1BE9B8F3D1D8"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.1.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "16AF5579-7763-4851-B7A2-B50A4D589AD2"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.1.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "44BED546-DD64-457E-B93A-CD2069C2068B"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.1.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "83D7E37B-448A-4B49-ABC7-57253B43126C"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.1.b0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "07346177-D7DE-4545-8BB1-D64D1BDBAAAA"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.1.b1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "65225643-46E4-4B93-BF3A-29DC98BBA92C"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.1.d0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DF6E1FE3-A09D-4593-A3DA-7700D5021EB3"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.1.d1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "50D5991E-8CAE-4FDC-A4D7-79D14BB2A4D5"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.1.d2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0D93288E-4ED1-4F4D-875A-AA85F6B853C6"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.2.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "33B61642-A3F1-4F13-8A3F-A369E1D47F1C"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.2.0_beta0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8575A31A-DD09-494F-895E-1740ABF4F671"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.2.0_rc0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9622FA39-20BD-4F92-A10A-56B1273A8FAA"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.2.0_rc1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "74666A8D-0B36-47BF-8873-267C8FD228E5"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.2.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B612838A-DD83-4E67-890E-165692DA4532"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.2.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "247F0030-0598-4ADF-8B5D-91BD7CFF7E44"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.2.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "61AD076A-D4C5-4149-94DE-E43BE78DE83B"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.2.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C276FEC9-68B0-46BC-92A0-65C3B8401FD2"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.2.4_rc0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "937F124D-1CE3-405D-A981-760199DA9ED1"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.2.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "44D01183-FC99-4FD3-965B-38B1FC39048F"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.2.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A3154BBA-DF19-458F-B8D0-CFCAC7DB366A"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.2.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "512BF3AF-4013-48E7-9546-5052CFBF0B11"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.2.8_01:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9965B682-2CFE-4881-8C0A-26B161731904"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.2.9:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "09FD2684-87CF-4B4D-B3D1-7DE43609D2E3"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.2.9_rc1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "96E75206-5C22-47CE-ABC4-960C7D80407B"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.2.9_rc2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EA45888D-E2C9-4A17-B699-0C775EFC5FDE"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.2.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B0DD62AB-DA57-48B6-9D00-1DBCD4AF111E"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.2.10_pre0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3D10D8BC-8C63-45CD-836E-08CC5E6C1676"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.2.10_pre1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C3E86801-E8C2-4DA3-92FD-F89FBB7B53D8"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.2.11:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B82462AC-665D-41C0-B198-AA52784DF4C3"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.2.12:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6B21ED45-9C48-4547-BDCE-7EB12B03AAEE"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.2.14:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BA62A170-2544-4D3D-8E22-21F35D2E9944"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.2.14_rc0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A8750DB2-F9CE-4CD6-9C11-733546D56EB1"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.2.14_rc1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1B72963C-FF0B-4F3F-8D93-8C99C1F43460"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.2.15:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DF5CEA1C-1EC7-49D7-9485-FA8773DA2D8A"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.2.15_rc0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "991A0243-5F9E-4E2B-8780-F58B17F9F73C"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.2.16:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3F68F8E1-BF3C-4C99-BE93-985BB8AD51FF"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.2.17:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D0F5EF68-A6FC-4FD7-8C36-4A8623C60622"
          },
          {
            "criteria": "cpe:2.3:a:jetty:jetty_http_server:4.2.18:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "858FCD10-5B40-4EA8-BA16-081EFC734695"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]
Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References
