CVE-2009-1591

Metadata

CVE-2009-1591
4.3
jvn.jp, jvndb.jvn.jp, rescue.ne.jp, securityfocus.com
2009-05-08
2017-06-06 20:19

Description

CRLF injection vulnerability in CGI RESCUE Web Mailer before 1.04 allows remote attackers to inject arbitrary HTTP headers, and conduct cross-site scripting (XSS) or HTTP response splitting attacks, via CRLF sequences in an unspecified web form.

Related Vulnerabilities