Vulnerabilities > CVE-2003-1338 - Unspecified vulnerability in Aprelium Technologies Abyss web Server
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE network
aprelium-technologies
Summary
CRLF injection vulnerability in Aprelium Abyss Web Server 1.1.2 and earlier allows remote attackers to inject arbitrary HTTP headers and possibly conduct HTTP Response Splitting attacks via CRLF sequences in the Location header. Per: http://cwe.mitre.org/data/definitions/93.html 'http://cwe.mitre.org/data/definitions/93.html'
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |