Vulnerability Name:

CVE-2006-6276 (CCN-30662)

Assigned:2006-11-30
Published:2006-11-30
Updated:2017-07-29
Summary:HTTP request smuggling vulnerability in Sun Java System Proxy Server before 20061130, when used with Sun Java System Application Server or Sun Java System Web Server, allows remote attackers to bypass HTTP request filtering, hijack web sessions, perform cross-site scripting (XSS), and poison web caches via unspecified attack vectors.
CVSS v3 Severity:3.7 Low (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): High
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): Low
Availibility (A): None
CVSS v2 Severity:6.8 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P)
5.0 Medium (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
2.6 Low (CCN CVSS v2 Vector: AV:N/AC:H/Au:N/C:N/I:P/A:N)
1.9 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:H/Au:N/C:N/I:P/A:N/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): High
Athentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): Partial
Availibility (A): None
Vulnerability Type:CWE-Other
Vulnerability Consequences:Gain Access
References:Source: MITRE
Type: CNA
CVE-2006-6276

Source: CCN
Type: SA23186
Sun Java System Server Products HTTP Request Smuggling

Source: SECUNIA
Type: UNKNOWN
23186

Source: CCN
Type: SECTRACK ID: 1017322
Sun Java Application Server Lets Remote Users Conduct HTTP Request Smuggling Attacks

Source: SECTRACK
Type: UNKNOWN
1017322

Source: CCN
Type: SECTRACK ID: 1017323
Sun Java System Web Server Lets Remote Users Conduct HTTP Request Smuggling Attacks

Source: SECTRACK
Type: UNKNOWN
1017323

Source: CCN
Type: SECTRACK ID: 1017324
Sun Java System Web Proxy Server Lets Remote Users Conduct HTTP Request Smuggling Attacks

Source: SECTRACK
Type: UNKNOWN
1017324

Source: CCN
Type: Sun Alert ID: 102733
Security Vulnerability With HTTP Requests in Sun Java System Server(s)

Source: SUNALERT
Type: Patch
102733

Source: CCN
Type: ASA-2006-279
Security Vulnerability With HTTP Requests in Sun Java System Server(s) Product: Sun Java System Web Server 6.0 Service Pack 10 Sun Java System Application Server Platform Edition 8.1 2005Q1 Sun ONE

Source: CCN
Type: OSVDB ID: 31727
Sun Java System Server Products HTTP Request Smuggling

Source: BID
Type: Patch
21371

Source: CCN
Type: BID-21371
Sun Multiple Java System Request Smuggling Vulnerability

Source: VUPEN
Type: UNKNOWN
ADV-2006-4793

Source: XF
Type: UNKNOWN
javasystem-proxy-csrf(30662)

Source: XF
Type: UNKNOWN
sunserver-proxy-csrf(30662)

Vulnerable Configuration:Configuration 1:
  • cpe:/a:sun:java_system_application_server:7.0:*:*:*:*:*:*:*
  • OR cpe:/a:sun:java_system_application_server:7.0:ur1:enterprise:*:*:*:*:*
  • OR cpe:/a:sun:java_system_application_server:7.0:ur1:standard:*:*:*:*:*
  • OR cpe:/a:sun:java_system_application_server:7.0:ur2:enterprise:*:*:*:*:*
  • OR cpe:/a:sun:java_system_application_server:7.0:ur2:standard:*:*:*:*:*
  • OR cpe:/a:sun:java_system_application_server:7.0:ur3:enterprise:*:*:*:*:*
  • OR cpe:/a:sun:java_system_application_server:7.0:ur3:standard:*:*:*:*:*
  • OR cpe:/a:sun:java_system_application_server:8.1:*:enterprise:*:*:*:*:*
  • OR cpe:/a:sun:java_system_application_server:8.1:*:platform:*:*:*:*:*
  • OR cpe:/a:sun:java_system_application_server:8.1:*:standard:*:*:*:*:*
  • OR cpe:/a:sun:java_system_application_server:8.1:ur1:platform:*:*:*:*:*
  • OR cpe:/a:sun:java_system_web_proxy_server:3.6:*:*:*:*:*:*:*
  • OR cpe:/a:sun:java_system_web_proxy_server:3.6:sp1:*:*:*:*:*:*
  • OR cpe:/a:sun:java_system_web_proxy_server:3.6:sp2:*:*:*:*:*:*
  • OR cpe:/a:sun:java_system_web_proxy_server:3.6:sp3:*:*:*:*:*:*
  • OR cpe:/a:sun:java_system_web_proxy_server:3.6:sp4:*:*:*:*:*:*
  • OR cpe:/a:sun:java_system_web_proxy_server:3.6:sp5:*:*:*:*:*:*
  • OR cpe:/a:sun:java_system_web_proxy_server:3.6:sp6:*:*:*:*:*:*
  • OR cpe:/a:sun:java_system_web_proxy_server:3.6:sp7:*:*:*:*:*:*
  • OR cpe:/a:sun:java_system_web_proxy_server:4.0:*:*:*:*:*:*:*
  • OR cpe:/a:sun:java_system_web_server:6.0:*:*:*:*:*:*:*
  • OR cpe:/a:sun:java_system_web_server:6.0:sp1:*:*:*:*:*:*
  • OR cpe:/a:sun:java_system_web_server:6.0:sp2:*:*:*:*:*:*
  • OR cpe:/a:sun:java_system_web_server:6.0:sp3:*:*:*:*:*:*
  • OR cpe:/a:sun:java_system_web_server:6.0:sp4:*:*:*:*:*:*
  • OR cpe:/a:sun:java_system_web_server:6.0:sp5:*:*:*:*:*:*
  • OR cpe:/a:sun:java_system_web_server:6.0:sp6:*:*:*:*:*:*
  • OR cpe:/a:sun:java_system_web_server:6.0:sp7:*:*:*:*:*:*
  • OR cpe:/a:sun:java_system_web_server:6.0:sp8:*:*:*:*:*:*
  • OR cpe:/a:sun:java_system_web_server:6.0:sp9:*:*:*:*:*:*
  • OR cpe:/a:sun:java_system_web_server:6.1:*:*:*:*:*:*:*
  • OR cpe:/a:sun:java_system_web_server:6.1:sp1:*:*:*:*:*:*
  • OR cpe:/a:sun:java_system_web_server:6.1:sp2:*:*:*:*:*:*
  • OR cpe:/a:sun:java_system_web_server:6.1:sp3:*:*:*:*:*:*
  • OR cpe:/a:sun:java_system_web_server:6.1:sp4:*:*:*:*:*:*
  • OR cpe:/a:sun:one_application_server:7.0:*:platform:*:*:*:*:*
  • OR cpe:/a:sun:one_application_server:7.0:*:standard:*:*:*:*:*
  • OR cpe:/a:sun:one_application_server:7.0:update_3:*:*:*:*:*:*
  • OR cpe:/a:sun:one_application_server:7.0:ur1:platform:*:*:*:*:*
  • OR cpe:/a:sun:one_application_server:7.0:ur1:standard:*:*:*:*:*
  • OR cpe:/a:sun:one_application_server:7.0:ur2:platform:*:*:*:*:*
  • OR cpe:/a:sun:one_application_server:7.0:ur2:standard:*:*:*:*:*
  • OR cpe:/a:sun:one_application_server:7.0:ur6:platform:*:*:*:*:*
  • OR cpe:/a:sun:one_application_server:7.0:ur6:standard:*:*:*:*:*
  • OR cpe:/a:sun:one_application_server:7.0:ur7:platform:*:*:*:*:*
  • OR cpe:/a:sun:one_application_server:7.0:ur7:standard:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:sun:one_application_server:7.0::standard:*:*:*:*:*
  • OR cpe:/a:sun:java_system_web_server:6.0:sp8:*:*:*:*:*:*
  • OR cpe:/a:sun:java_system_web_server:6.1:*:*:*:*:*:*:*
  • OR cpe:/a:sun:java_system_web_server:6.0:*:*:*:*:*:*:*
  • OR cpe:/a:sun:java_system_web_server:6.1:sp1:*:*:*:*:*:*
  • OR cpe:/a:sun:java_system_web_server:6.1:sp2:*:*:*:*:*:*
  • OR cpe:/a:sun:java_system_web_server:6.1:sp3:*:*:*:*:*:*
  • OR cpe:/a:sun:java_system_web_server:6.1:sp4:*:*:*:*:*:*
  • OR cpe:/a:sun:java_system_web_server:6.0:sp1:*:*:*:*:*:*
  • OR cpe:/a:sun:java_system_web_server:6.0:sp2:*:*:*:*:*:*
  • OR cpe:/a:sun:java_system_web_server:6.0:sp3:*:*:*:*:*:*
  • OR cpe:/a:sun:java_system_web_server:6.0:sp4:*:*:*:*:*:*
  • OR cpe:/a:sun:java_system_web_server:6.0:sp5:*:*:*:*:*:*
  • OR cpe:/a:sun:java_system_web_server:6.0:sp6:*:*:*:*:*:*
  • OR cpe:/a:sun:java_system_web_server:6.0:sp7:*:*:*:*:*:*
  • OR cpe:/a:sun:java_system_web_server:6.0:sp9:*:*:*:*:*:*
  • OR cpe:/a:sun:one_application_server:7.0:ur7:platform:*:*:*:*:*
  • OR cpe:/a:sun:one_application_server:7.0:ur6:standard:*:*:*:*:*
  • OR cpe:/a:sun:one_application_server:7.0:ur6:platform:*:*:*:*:*
  • OR cpe:/a:sun:one_application_server:7.0:ur2:standard:*:*:*:*:*
  • OR cpe:/a:sun:one_application_server:7.0:ur2:platform:*:*:*:*:*
  • OR cpe:/a:sun:one_application_server:7.0:ur1:standard:*:*:*:*:*
  • OR cpe:/a:sun:one_application_server:7.0:ur1:platform:*:*:*:*:*
  • OR cpe:/a:sun:java_system_web_proxy_server:3.6:sp7:*:*:*:*:*:*
  • OR cpe:/a:sun:java_system_web_proxy_server:3.6:sp5:*:*:*:*:*:*
  • OR cpe:/a:sun:java_system_web_proxy_server:3.6:sp4:*:*:*:*:*:*
  • OR cpe:/a:sun:java_system_web_proxy_server:3.6:sp3:*:*:*:*:*:*
  • OR cpe:/a:sun:java_system_web_proxy_server:3.6:sp2:*:*:*:*:*:*
  • OR cpe:/a:sun:java_system_web_proxy_server:3.6:sp1:*:*:*:*:*:*
  • OR cpe:/a:sun:java_system_web_proxy_server:3.6:sp1:*:*:*:*:*:*
  • OR cpe:/a:sun:java_system_web_proxy_server:4.0:*:*:*:*:*:*:*
  • OR cpe:/a:sun:java_system_application_server:8.1:ur1:platform:*:*:*:*:*
  • OR cpe:/a:sun:one_application_server:7.0::platform:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    sun java system application server 7.0
    sun java system application server 7.0 ur1
    sun java system application server 7.0 ur1
    sun java system application server 7.0 ur2
    sun java system application server 7.0 ur2
    sun java system application server 7.0 ur3
    sun java system application server 7.0 ur3
    sun java system application server 8.1
    sun java system application server 8.1
    sun java system application server 8.1
    sun java system application server 8.1 ur1
    sun java system web proxy server 3.6
    sun java system web proxy server 3.6 sp1
    sun java system web proxy server 3.6 sp2
    sun java system web proxy server 3.6 sp3
    sun java system web proxy server 3.6 sp4
    sun java system web proxy server 3.6 sp5
    sun java system web proxy server 3.6 sp6
    sun java system web proxy server 3.6 sp7
    sun java system web proxy server 4.0
    sun java system web server 6.0
    sun java system web server 6.0 sp1
    sun java system web server 6.0 sp2
    sun java system web server 6.0 sp3
    sun java system web server 6.0 sp4
    sun java system web server 6.0 sp5
    sun java system web server 6.0 sp6
    sun java system web server 6.0 sp7
    sun java system web server 6.0 sp8
    sun java system web server 6.0 sp9
    sun java system web server 6.1
    sun java system web server 6.1 sp1
    sun java system web server 6.1 sp2
    sun java system web server 6.1 sp3
    sun java system web server 6.1 sp4
    sun one application server 7.0
    sun one application server 7.0
    sun one application server 7.0 update_3
    sun one application server 7.0 ur1
    sun one application server 7.0 ur1
    sun one application server 7.0 ur2
    sun one application server 7.0 ur2
    sun one application server 7.0 ur6
    sun one application server 7.0 ur6
    sun one application server 7.0 ur7
    sun one application server 7.0 ur7
    sun one application server 7.0
    sun java system web server 6.0 sp8
    sun java system web server 6.1
    sun java system web server 6.0
    sun java system web server 6.1 sp1
    sun java system web server 6.1 sp2
    sun java system web server 6.1 sp3
    sun java system web server 6.1 sp4
    sun java system web server 6.0 sp1
    sun java system web server 6.0 sp2
    sun java system web server 6.0 sp3
    sun java system web server 6.0 sp4
    sun java system web server 6.0 sp5
    sun java system web server 6.0 sp6
    sun java system web server 6.0 sp7
    sun java system web server 6.0 sp9
    sun one application server 7.0 ur7
    sun one application server 7.0 ur6
    sun one application server 7.0 ur6
    sun one application server 7.0 ur2
    sun one application server 7.0 ur2
    sun one application server 7.0 ur1
    sun one application server 7.0 ur1
    sun java system web proxy server 3.6 sp7
    sun java system web proxy server 3.6 sp5
    sun java system web proxy server 3.6 sp4
    sun java system web proxy server 3.6 sp3
    sun java system web proxy server 3.6 sp2
    sun java system web proxy server 3.6 sp1
    sun java system web proxy server 3.6 sp1
    sun java system web proxy server 4.0
    sun java system application server 8.1 ur1
    sun one application server 7.0