Description
CRLF injection vulnerability in the HTTP Header Handler in Digital Broadband Delivery System in Cisco Headend System Release allows remote attackers to inject arbitrary HTTP headers, and conduct HTTP response splitting attacks or cross-site scripting (XSS) attacks, via a crafted request, aka Bug ID CSCur25580.
No analysis available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
| Source | ID | Title |
|---|---|---|
EUVD |
EUVD-2015-0746 | CRLF injection vulnerability in the HTTP Header Handler in Digital Broadband Delivery System in Cisco Headend System Release allows remote attackers to inject arbitrary HTTP headers, and conduct HTTP response splitting attacks or cross-site scripting (XSS) attacks, via a crafted request, aka Bug ID CSCur25580. |
References
History
No history.
Status: PUBLISHED
Assigner: cisco
Published:
Updated: 2024-08-06T04:17:32.821Z
Reserved: 2015-01-07T00:00:00.000Z
Link: CVE-2015-0733
No data.
Status : Modified
Published: 2015-05-30T14:59:00.067
Modified: 2026-06-17T00:20:48.967
Link: CVE-2015-0733
No data.
OpenCVE Enrichment
No data.
Weaknesses
-
CWE-113
Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Request/Response Splitting')
EUVD