Oval Definition:	oval:org.opensuse.security:def:20066969
Revision Date: 2023-06-22 Version: 1 Title: CVE-2006-6969 Description: Jetty before 4.2.27, 5.1 before 5.1.12, 6.0 before 6.0.2, and 6.1 before 6.1.0pre3 generates predictable session identifiers using java.util.random, which makes it easier for remote attackers to guess a session identifier through brute force attacks, bypass authentication requirements, and possibly conduct cross-site request forgery attacks. Family: unix Class: vulnerability Status: Reference(s): Mitre CVE-2006-6969 SUSE CVE-2006-6969 Platform(s): SUSE Linux Enterprise Desktop 15 SP5 SUSE Linux Enterprise High Performance Computing 15 SP5 SUSE Linux Enterprise Module for Development Tools 15 SP5 SUSE Linux Enterprise Server 15 SP5 SUSE Linux Enterprise Server for SAP Applications 15 SP5 Product(s): Definition Synopsis Release Information SUSE Linux Enterprise Desktop 15 SP5 is installed OR SUSE Linux Enterprise High Performance Computing 15 SP5 is installed OR SUSE Linux Enterprise Module for Development Tools 15 SP5 is installed OR SUSE Linux Enterprise Server 15 SP5 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP5 is installed AND Package Information jetty-http is not affected OR jetty-io is not affected OR jetty-security is not affected OR jetty-server is not affected OR jetty-servlet is not affected OR jetty-util is not affected OR jetty-util-ajax is not affected
BACK