CRLF injection vulnerability in Lynx 2.8.4 and previous versions allows remote malicious users to inject false HTTP headers into an HTTP request that is provided on the command line, via a URL containing encoded carriage return, line feed, and other whitespace characters.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
university of kansas lynx 2.8.2_rel1 |
||
university of kansas lynx 2.8.3 |
||
elinks elinks 0.3.2 |
||
links links 0.96 |
||
elinks elinks 0.2.4 |
||
university of kansas lynx 2.8.4_rel1 |
||
university of kansas lynx 2.8.5_dev8 |
||
university of kansas lynx 2.8.3_rel1 |
||
university of kansas lynx 2.8.4 |