CVE-2016-0359 (websphere_application_server)

CVE-2016-0359 (websphere_application_server)

CRLF injection vulnerability in IBM WebSphere Application Server (WAS) 7.0 before 7.0.0.43, 8.0 before 8.0.0.13, 8.5 Full before 8.5.5.10, and 8.5 Liberty before Liberty Fix Pack 16.0.0.2 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a crafted URL.

Source: CVE-2016-0359 (websphere_application_server)

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다