CVE Vulnerabilities

CVE-2003-1338

Published: Dec 31, 2003 | Modified: Jun 23, 2010
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4.3 MEDIUM
AV:N/AC:M/Au:N/C:N/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

CRLF injection vulnerability in Aprelium Abyss Web Server 1.1.2 and earlier allows remote attackers to inject arbitrary HTTP headers and possibly conduct HTTP Response Splitting attacks via CRLF sequences in the Location header.

Affected Software

Name Vendor Start Version End Version
Abyss_web_server Aprelium_technologies * 1.1.2

References