CVE-2005-2094

Name of the Vulnerable Software and Affected Versions: SunONE web server version 6.1 SP1

Description: The issue allows remote attackers to poison the web cache, bypass web application firewall protection, and conduct cross-site scripting (XSS) attacks. This is achieved via an HTTP request with both a "Transfer-Encoding: chunked" header and a Content-Length header. The vulnerable software incorrectly handles and forwards the body of the request, causing the receiving server to process it as a separate HTTP request, also known as "HTTP Request Smuggling."

Recommendations: For SunONE web server version 6.1 SP1, consider disabling the handling of HTTP requests with both "Transfer-Encoding: chunked" and Content-Length headers as a temporary workaround until a patch is available. Restrict access to sensitive areas of the web application to minimize the risk of exploitation. Avoid using the vulnerable web server for critical applications until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.