CRLF injection vulnerability in IBM WebSphere Application Server (WAS) prior to 6.0.2.19 allows remote malicious users to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a single CRLF sequence in a context that is not a valid multi-line header.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm websphere application server |