Vulnerabilities > CVE-2004-1507 - Unspecified vulnerability in Webcalendar
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
CRLF injection vulnerability in login.php in WebCalendar allows remote attackers to inject CRLF sequences via the return_path parameter and perform HTTP Response Splitting attacks to modify expected HTML content from the server.
Vulnerable Configurations
References
- http://marc.info/?l=bugtraq&m=110011618724455&w=2
- http://marc.info/?l=bugtraq&m=110011618724455&w=2
- http://secunia.com/advisories/13164
- http://secunia.com/advisories/13164
- http://www.securityfocus.com/bid/11651
- http://www.securityfocus.com/bid/11651
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18027
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18027