Description

CRLF injection vulnerability in Squid before 3.1.1 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a crafted header in a response.

Remediation

References

CVE-2015-0881

Related Vulnerabilities

WordPress Plugin Product Catalog Privilege Escalation (3.8.1)

WordPress Plugin Intuitive Custom Post Order Multiple Vulnerabilities (3.1.3)

WordPress Plugin Translate WordPress-Google Language Translator Cross-Site Scripting (5.0.05)

Oracle HTTP Server Other Vulnerability (CVE-2006-5348)

Microsoft SQL Server Other Vulnerability (CVE-2002-0721)

Severity

Medium

Classification

CVE-2015-0881

Tags

Missing Update Known Vulnerabilities