Jetty Directory Listing Cross Site Scripting Exploit

A Cross-Site scripting vulnerability has been reported in Jetty. This vulnerability can be induced whenever Jetty displays a web directory listing. Client-side script code can be included in the HTTP response by appending it next to directory listing's path, preceded by a ';' character.
Platform: 
Vulnerabilty ID: 
CVE-2009-1524
Product Version: 
9.0
Released Date: 
Thursday, September 24, 2009 - 00:00