← back
CVE-2016-8024

CVE-2016-8024

EPSS 8.7%
Improper neutralization of CRLF sequences in HTTP headers vulnerability in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and earlier) allows remote unauthenticated attacker to obtain sensitive information via the server HTTP response spoofing.
Affected products
Intel · VirusScan Enterprise Linux (VSEL)
public PoCs found2
cve_referencewww.exploit-db.com/exploits/40911/unverifiedexploitdbwww.exploit-db.com/exploits/40911unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://kc.mcafee.com/corporate/index?page=content&id=SB10181https://www.exploit-db.com/exploits/40911/http://www.securityfocus.com/bid/94823http://www.securitytracker.com/id/1037433