CRLF injection vulnerability in the redirect servlet in Open-Xchange AppSuite and Server before 6.22.0 rev15, 6.22.1 before rev17, 7.0.1 before rev6, and 7.0.2 before rev7 allows remote attackers to inject arbitrary HTTP headers and conduct open redirect attacks by leveraging improper sanitization of whitespace characters.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2022-10-03T16:15:00
Updated: 2022-10-03T16:15:00
Reserved: 2022-10-03T00:00:00
Link: CVE-2013-2582
JSON object: View
NVD Information
Status : Analyzed
Published: 2013-09-05T11:44:57.587
Modified: 2013-09-26T16:47:00.267
Link: CVE-2013-2582
JSON object: View
Redhat Information
No data.
CWE