Description

CRLF injection vulnerability in Squid before 3.1.1 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a crafted header in a response.

Remediation

References

CVE-2015-0881

Related Vulnerabilities

WordPress Plugin WordPress Gallery Cross-Site Scripting (1.0)

WordPress Plugin SlideDeck 2 Lite Responsive Content Slider Local/Remote File Inclusion (2.3.3)

Drupal Core 9.2.x Security Bypass (9.2.0 - 9.2.19)

WordPress Plugin WordPress Calls to Action Multiple Cross-Site Scripting Vulnerabilities (2.5.0)

Joomla! Core 1.5.x Cross-Site Scripting (1.5.0 - 1.5.11)

Severity

Medium

Classification

CVE-2015-0881

Tags

Missing Update Known Vulnerabilities