Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-1470

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2004-1470
Last Modified 05 Sep 2008 04:41:29
Published 31 Dec 2004 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-1470

Summary

CRLF injection vulnerability in SnipSnap 0.5.2a, and other versions before 1.0b1, allows remote attackers to perform HTTP Response Splitting attacks to modify expected HTML content from the server.

Vulnerable Systems

Application

  • Snipsnap 0.5.2a


References

BID - 11180

GENTOO - GLSA-200409-23

XF - snipsnap-response-splitting(17364)

CONFIRM - http://www.snipsnap.org/space/start

BUGTRAQ - 20040914 ADVISORY: http response splitting in snipsnap


Last Updated: 27 May 2016 10:39:02