3 matches found
CVE-2016-1138
CRLF injection vulnerability on KDDI HOME SPOT CUBE devices before 2 allows remote attackers to inject arbitrary HTTP headers via unspecified vectors...
CVE-2016-1138
KDDI HOME SPOT CUBE devices prior to version 2 are affected by a CRLF injection vulnerability that allows remote attackers to inject arbitrary HTTP headers via unspecified vectors. This can enable HTTP header manipulation (including potential cookie value changes) and is associated with the HTTP ...
CVE-2016-1138
CRLF injection vulnerability on KDDI HOME SPOT CUBE devices before 2 allows remote attackers to inject arbitrary HTTP headers via unspecified vectors...