Vulnerabilities > CVE-2005-1087 - Unspecified vulnerability in AN An-Httpd 1.42N
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
NONE Summary
CRLF injection vulnerability in the cmdIS.DLL plugin for AN HTTPD Server 1.42n allows remote attackers to spoof or hide entries in the logfile, and possibly read files using an injected type command, via CRLF sequences in an HTTP request.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | AN HTTPD 1.42 Arbitrary Log Content Injection Vulnerability. CVE-2005-1087. Remote exploit for windows platform |
| id | EDB-ID:25365 |
| last seen | 2016-02-03 |
| modified | 2005-04-08 |
| published | 2005-04-08 |
| reporter | Tan Chew Keong |
| source | https://www.exploit-db.com/download/25365/ |
| title | AN HTTPD 1.42 - Arbitrary Log Content Injection Vulnerability |