{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2004-09-16T00:00:00.000Z", "descriptions": [{"lang": "en", "value": "CRLF injection vulnerability in down.asp for Snitz Forums 2000 3.4.04 allows remote attackers to perform HTTP Response Splitting attacks to modify expected HTML content from the server via the location parameter."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-07-10T14:57:01.000Z", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "12590", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/12590"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://forum.snitz.com/forum/topic.asp?ARCHIVE=true&TOPIC_ID=54791"}, {"name": "20040916 ADVISORY: security hole (http response splitting) in snitz forums", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://marc.info/?l=bugtraq&m=109537195413691&w=2"}, {"name": "11201", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/11201"}, {"name": "snitz-response-splitting(17421)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17421"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2004-1687", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "CRLF injection vulnerability in down.asp for Snitz Forums 2000 3.4.04 allows remote attackers to perform HTTP Response Splitting attacks to modify expected HTML content from the server via the location parameter."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "12590", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/12590"}, {"name": "http://forum.snitz.com/forum/topic.asp?ARCHIVE=true&TOPIC_ID=54791", "refsource": "CONFIRM", "url": "http://forum.snitz.com/forum/topic.asp?ARCHIVE=true&TOPIC_ID=54791"}, {"name": "20040916 ADVISORY: security hole (http response splitting) in snitz forums", "refsource": "BUGTRAQ", "url": "http://marc.info/?l=bugtraq&m=109537195413691&w=2"}, {"name": "11201", "refsource": "BID", "url": "http://www.securityfocus.com/bid/11201"}, {"name": "snitz-response-splitting(17421)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17421"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-08T01:00:37.130Z"}, "title": "CVE Program Container", "references": [{"name": "12590", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/12590"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://forum.snitz.com/forum/topic.asp?ARCHIVE=true&TOPIC_ID=54791"}, {"name": "20040916 ADVISORY: security hole (http response splitting) in snitz forums", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://marc.info/?l=bugtraq&m=109537195413691&w=2"}, {"name": "11201", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/11201"}, {"name": "snitz-response-splitting(17421)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17421"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2004-1687", "datePublished": "2005-02-20T05:00:00.000Z", "dateReserved": "2005-02-21T00:00:00.000Z", "dateUpdated": "2024-08-08T01:00:37.130Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:snitz_communications:snitz_forums_2000:3.0:*:*:*:*:*:*:*", "matchCriteriaId": "EBAEA3C3-D65B-47B6-9A1B-CE18F7C86771", "vulnerable": true}, {"criteria": "cpe:2.3:a:snitz_communications:snitz_forums_2000:3.1:sr4:*:*:*:*:*:*", "matchCriteriaId": "AEBCC803-6F31-4CA5-B8AF-42AA370E0CF4", "vulnerable": true}, {"criteria": "cpe:2.3:a:snitz_communications:snitz_forums_2000:3.3:*:*:*:*:*:*:*", "matchCriteriaId": "7CB43A6B-03DE-4D60-AB41-87E419F82582", "vulnerable": true}, {"criteria": "cpe:2.3:a:snitz_communications:snitz_forums_2000:3.3.01:*:*:*:*:*:*:*", "matchCriteriaId": "3D54E309-5D2F-4C3C-835B-7653D86E25F0", "vulnerable": true}, {"criteria": "cpe:2.3:a:snitz_communications:snitz_forums_2000:3.3.02:*:*:*:*:*:*:*", "matchCriteriaId": "4027A962-81FD-472F-80CD-B1C3BABF3555", "vulnerable": true}, {"criteria": "cpe:2.3:a:snitz_communications:snitz_forums_2000:3.3.03:*:*:*:*:*:*:*", "matchCriteriaId": "C4396E99-B5C8-4914-A3DB-76E22A10AE84", "vulnerable": true}, {"criteria": "cpe:2.3:a:snitz_communications:snitz_forums_2000:3.4.02:*:*:*:*:*:*:*", "matchCriteriaId": "0D89B42F-7738-47EE-871A-FE16C53BCD81", "vulnerable": true}, {"criteria": "cpe:2.3:a:snitz_communications:snitz_forums_2000:3.4.03:*:*:*:*:*:*:*", "matchCriteriaId": "FD4EF4E8-F8A9-40C4-9F89-8C64A8CF2625", "vulnerable": true}, {"criteria": "cpe:2.3:a:snitz_communications:snitz_forums_2000:3.4.04:*:*:*:*:*:*:*", "matchCriteriaId": "A31D3D44-EC0B-4502-A1FA-3AE2BF4D4254", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "CRLF injection vulnerability in down.asp for Snitz Forums 2000 3.4.04 allows remote attackers to perform HTTP Response Splitting attacks to modify expected HTML content from the server via the location parameter."}], "id": "CVE-2004-1687", "lastModified": "2025-04-03T01:03:51.193", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2004-09-16T04:00:00.000", "references": [{"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://forum.snitz.com/forum/topic.asp?ARCHIVE=true&TOPIC_ID=54791"}, {"source": "cve@mitre.org", "url": "http://marc.info/?l=bugtraq&m=109537195413691&w=2"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://secunia.com/advisories/12590"}, {"source": "cve@mitre.org", "tags": ["Exploit", "Patch", "Vendor Advisory"], "url": "http://www.securityfocus.com/bid/11201"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17421"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://forum.snitz.com/forum/topic.asp?ARCHIVE=true&TOPIC_ID=54791"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://marc.info/?l=bugtraq&m=109537195413691&w=2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://secunia.com/advisories/12590"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit", "Patch", "Vendor Advisory"], "url": "http://www.securityfocus.com/bid/11201"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17421"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}

{}