CRLF injection vulnerability in the Component Browser in Adobe ColdFusion 8.0 up to and including 9.0.1 allows remote malicious users to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
adobe coldfusion 8.0 |
||
adobe coldfusion 8.0.1 |
||
adobe coldfusion 9.0 |