CVE-2003-1338

2022-10-0316:15:42

mitre

www.cve.org

crlf injection

abyss web server

http response splitting

7 High

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

52.3%

JSON

CRLF injection vulnerability in Aprelium Abyss Web Server 1.1.2 and earlier allows remote attackers to inject arbitrary HTTP headers and possibly conduct HTTP Response Splitting attacks via CRLF sequences in the Location header.

References

archives.neohapsis.com/archives/bugtraq/2003-06/0235.html