CVE-2008-1770 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2008-1770
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2008-1770

Description: CRLF injection vulnerability in Akamai Download Manager ActiveX control before 2.2.3.6 allows remote attackers to force the download and execution of arbitrary files via a URL parameter containing an encoded LF followed by a malicious target line.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/42879 ST 1020194 SAID Secunia Advisory: SA30537 MILW0RM http://www.milw0rm.com/exploits/5741 FULLDISC http://lists.grok.org.uk/pipermail/full-disclosure/2008-June/062672.html BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/493077/100/0/threaded http://www.securityfocus.com/archive/1/archive/1/493142/100/0/threaded

Return to the previous page.