Описание
HTTP response splitting vulnerability in frameset.htm in SAP Web Application Server (WAS) 6.10 through 7.00 allows remote attackers to inject arbitrary HTML headers via the sap-exiturl parameter.
HTTP response splitting vulnerability in frameset.htm in SAP Web Application Server (WAS) 6.10 through 7.00 allows remote attackers to inject arbitrary HTML headers via the sap-exiturl parameter.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2005-3633
- https://exchange.xforce.ibmcloud.com/vulnerabilities/23030
- http://marc.info/?l=bugtraq&m=113156438708932&w=2
- http://secunia.com/advisories/17515
- http://securityreason.com/securityalert/164
- http://www.cybsec.com/vuln/CYBSEC_Security_Advisory_HTTP_Response_Splitting_in_SAP_WAS.pdf
- http://www.osvdb.org/20714
- http://www.securityfocus.com/bid/15360
- http://www.securitytracker.com/alerts/2005/Nov/1015174.html
- http://www.vupen.com/english/advisories/2005/2361
EPSS
Процентиль: 76%
0.00979
Низкий
CVE ID
Связанные уязвимости
nvd
около 20 лет назад
HTTP response splitting vulnerability in frameset.htm in SAP Web Application Server (WAS) 6.10 through 7.00 allows remote attackers to inject arbitrary HTML headers via the sap-exiturl parameter.
EPSS
Процентиль: 76%
0.00979
Низкий