Adobe ColdFusion Component Browser CVE-2012-2041 HTTP Response Splitting Vulnerability

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1208968 漏洞类型 Input Validation Error
发布时间 2012-06-12 更新时间 2012-06-12
CVE编号 CVE-2012-2041 CNNVD-ID N/A
漏洞平台 N/A CVSS评分 4.3
|漏洞来源
https://www.securityfocus.com/bid/53941
|漏洞详情
CRLF injection vulnerability in the Component Browser in Adobe ColdFusion 8.0 through 9.0.1 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors.
|受影响的产品
Adobe ColdFusion 8.0.1 Adobe ColdFusion 9.0.1 Adobe ColdFusion 9.0 Adobe ColdFusion 8.0
|参考资料
resource:Patch
hyperlink:http://www.adobe.com/support/security/bulletins/apsb12-15.html