2 matches found
CVE-2014-3427
CVE-2014-3427 affects Yealink VoIP Phones (validated on firmware 28.72.0.2) and arises from CRLF injection in the servlet handling the model parameter, enabling remote header injection and HTTP response splitting. Impact, as stated: arbitrary HTTP headers can be injected via the model parameter t...
CVE-2014-3427
creationtimestamp| type| source ---|---|--- 2014-06-12 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/39334...