← volver
CVE-2005-3982

CVE-2005-3982

EPSS 7.1%
CRLF injection vulnerability in layers_toggle.php in WebCalendar 1.0.1 might allow remote attackers to modify HTTP headers and conduct HTTP response splitting attacks via the ret parameter, which is used to redirect URL requests.
Productos afectados
n/a · n/a
PoCs públicas encontradas1
exploitdbwww.exploit-db.com/exploits/26691no verificado
⚠ Recursos públicos, para evaluar la exposición de sistemas que controlas o estás autorizado a probar. Prueba solo con autorización.

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://secunia.com/advisories/17848http://secunia.com/advisories/19240http://vd.lwang.org/webcalendar_multiple_vulns.txthttp://www.debian.org/security/2006/dsa-1002http://www.osvdb.org/21383http://www.securityfocus.com/archive/1/418286/100/0/threadedhttp://www.securityfocus.com/bid/15673http://www.vupen.com/english/advisories/2005/2702