5
CVE-2004-1470
- EPSS 2.44%
- Veröffentlicht 31.12.2004 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:07:46
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginCRLF injection vulnerability in SnipSnap 0.5.2a, and other versions before 1.0b1, allows remote attackers to perform HTTP Response Splitting attacks to modify expected HTML content from the server.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 2.44% | 0.822 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:N/I:P/A:N
|
http://marc.info/?l=bugtraq&m=109518773223511&w=2
http://www.gentoo.org/security/en/glsa/glsa-200409-23.xml
http://www.securityfocus.com/bid/11180
http://www.snipsnap.org/space/start
https://exchange.xforce.ibmcloud.com/vulnerabilities/17364