CVE-2014-1956

2014-04-30T14:22:00
ID CVE-2014-1956
Type cve
Reporter cve@mitre.org
Modified 2014-07-18T18:38:00

Description

CRLF injection vulnerability in FortiGuard FortiWeb before 5.0.3 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors. CWE-113: Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Response Splitting') "http://cwe.mitre.org/data/definitions/113.html"