CVE-2017-5615

Опубликовано: 03 мар. 2017

Источник: ubuntu

Приоритет: medium

CVSS2: 5.8

CVSS3: 6.1

Описание

cgiemail and cgiecho allow remote attackers to inject HTTP headers via a newline character in the redirect location.

Релиз	Статус	Примечание
devel	DNE
esm-apps/xenial	released	1.6-37+deb7u1build0.16.04.1
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was released [1.6-37+deb7u1build0.14.04.1]]
precise	released	1.6-37+deb7u1build0.12.04.1
trusty	released	1.6-37+deb7u1build0.14.04.1
trusty/esm	DNE	trusty was released [1.6-37+deb7u1build0.14.04.1]
upstream	released	1.6-37+deb7u1
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE
xenial	released	1.6-37+deb7u1build0.16.04.1

Показывать по

5.8 Medium

CVSS2

6.1 Medium

CVSS3

CVE-2017-5615

CVSS3: 6.1

nvd

почти 9 лет назад

cgiemail and cgiecho allow remote attackers to inject HTTP headers via a newline character in the redirect location.

CVE-2017-5615

CVSS3: 6.1

debian

почти 9 лет назад

cgiemail and cgiecho allow remote attackers to inject HTTP headers via ...

GHSA-r88j-2w5r-2c6x

CVSS3: 6.1

github

больше 3 лет назад

cgiemail and cgiecho allow remote attackers to inject HTTP headers via a newline character in the redirect location.

5.8 Medium

CVSS2

6.1 Medium

CVSS3