CVE-2007-6672

Name of the Vulnerable Software and Affected Versions Mortbay Jetty versions 6.1.5 through 6.1.6

Description The issue allows remote attackers to bypass protection mechanisms and read the source of files via multiple '/' characters in the URI. This is achieved by including multiple / (slash) characters in the URI, which enables access to sensitive information.

Recommendations For Mortbay Jetty versions 6.1.5 and 6.1.6, consider restricting access to sensitive files and directories as a temporary workaround until a patch is available. Avoid using multiple / characters in the URI to minimize the risk of exploitation.