Published: 02/09/2016 Updated: 12/02/2023

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

CVSS v3 Base Score: 6.1 | Impact Score: 2.7 | Exploitability Score: 2.8

VMScore: 384

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

CRLF injection vulnerability in the HTTPConnection.putheader function in urllib2 and urllib in CPython (aka Python) prior to 2.7.10 and 3.x prior to 3.4.4 allows remote malicious users to inject arbitrary HTTP headers via CRLF sequences in a URL.

Vulnerable Product	Search on Vulmon	Subscribe to Product
python python
python python 3.1.1
python python 3.3.2
python python 3.0
python python 3.0.1
python python 3.2.2
python python 3.1.0
python python 3.2.5
python python 3.1.5
python python 3.3.6
python python 3.4.0
python python 3.2.1
python python 3.2.0
python python 3.3.1
python python 3.4.3
python python 3.1.2
python python 3.3.4
python python 3.3.5
python python 3.2.3
python python 3.2.6
python python 3.3.0
python python 3.4.2
python python 3.3.3
python python 3.2.4
python python 3.4.1
python python 3.1.3
python python 3.1.4

Several security issues were fixed in Python ...

It was found that Python's httplib library (used urllib, urllib2 and others) did not properly check HTTP header input in HTTPConnectionputheader() An attacker could use this flow to inject additional headers in a Python application that allows user provided header name or values (CVE-2016-5699) It was found that Python's smtplib library did not ...

net/http in Ruby HTTP Header suffers from an injection issue ...

PoC code of CVE-2016-5699 Vulnerability

CVE-2016-5699-poc PoC code of CVE-2016-5699 Vulnerability pocpy file is url sender to receiverpy receiverpy is Flask http receive headers testing Video : youtube/ugUt5iKpcV4 bunseokbot@UpRoot

SWPUCTF 2016 Web Web7 题目详情 SWPU 2016 Web7 考点 Python2 Urllib2头部注入(CVE-2016-5699) Redis SSRF 启动 docker-compose up -d open 127001:8409/ 题目说明 Flag位于files/src/flag中，Docker中位于/app/src/flag中。最新版的Python已经修复该漏洞，因此我选择老版本的Python2(Python 275)，Docker镜像build时进行编译。

Reading Course Report

cve-2016-5699-report Reading Course Report This repo references an example simple-clientpy is a Python script to make HTTP requests to the URL passed from a command argument simple-serverpy uses Flask to construct a simple HTTP server to print the headers of received requests Set Up Install virtualenv, pip install virtualenv Get two versions of Python for comparison, one

CWE-113 http://blog.blindspotsecurity.com/2016/06/advisory-http-header-injection-in.html https://docs.python.org/3.4/whatsnew/changelog.html#python-3-4-4 https://hg.python.org/cpython/rev/bf3e1c9b80e9 http://www.openwall.com/lists/oss-security/2016/06/15/12 http://www.openwall.com/lists/oss-security/2016/06/16/2 http://www.openwall.com/lists/oss-security/2016/06/14/7 https://hg.python.org/cpython/raw-file/v2.7.10/Misc/NEWS https://hg.python.org/cpython/rev/1c45047c5102 http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html http://www.securityfocus.com/bid/91226 http://www.splunk.com/view/SP-CAAAPUE http://www.splunk.com/view/SP-CAAAPSV http://rhn.redhat.com/errata/RHSA-2016-1630.html http://rhn.redhat.com/errata/RHSA-2016-1629.html http://rhn.redhat.com/errata/RHSA-2016-1628.html http://rhn.redhat.com/errata/RHSA-2016-1627.html http://rhn.redhat.com/errata/RHSA-2016-1626.html https://lists.debian.org/debian-lts-announce/2019/02/msg00011.html http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00040.html https://usn.ubuntu.com/3134-1/https://nvd.nist.gov

CVE-2016-5699

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

Exploits

Github Repositories

References

Vulmon Search

About

Products

Connect