CVE-2004-1516 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2004-1516
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2004-1516

Description: CRLF injection vulnerability in index.php in phpWebSite 0.9.3-4 allows remote attackers to perform HTTP Response Splitting attacks to modify expected HTML content from the server via the block_username parameter in the user module.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/18046 SAID Secunia Advisory: SA13172 GENTOO http://security.gentoo.org/glsa/glsa-200411-35.xml CONFIRM http://phpwebsite.appstate.edu/index.php?module=announce&ANN_id=863&ANN_user_op=view BUGTRAQ http://marc.theaimsgroup.com/?l=bugtraq&m=110022027420583&w=2 BID 11673

Return to the previous page.