Multiple CRLF injection vulnerabilities in Adobe ColdFusion - CVE-2011-0581ID: oval:org.secpod.oval:def:555 | Date: (C)2011-03-25 (M)2022-10-10 |
Class: VULNERABILITY | Family: windows |
The host is installed with Adobe Coldfusion and is prone to multiple CRLF injection vulnerabilities. The flaws are present in the application 8.0 through 9.0.1 caused by improper validation of user-supplied input which will persuade a victim to click on a specially-crafted URL link containing CRLF character sequences. Successful exploitation allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified tags.
Platform: |
Microsoft Windows 11 |
Microsoft Windows Server 2022 |
Microsoft Windows Server 2012 R2 |
Microsoft Windows 8.1 |
Microsoft Windows Server 2019 |
Microsoft Windows Server 2016 |
Microsoft Windows 10 |
Microsoft Windows 2000 |
Microsoft Windows 7 |
Microsoft Windows Server 2003 |
Microsoft Windows Server 2008 |
Microsoft Windows Vista |
Microsoft Windows XP |
Microsoft Windows Server 2008 R2 |
Microsoft Windows 8 |
Microsoft Windows Server 2012 |