CVE-2004-1470 Information

Description

CRLF injection vulnerability in SnipSnap 0.5.2a and other versions before 1.0b1 allows remote attackers to perform HTTP Response Splitting attacks to modify expected HTML content from the server.

Reference

http://marc.info/?l=bugtraq&m=109518773223511&w=2 http://www.gentoo.org/security/en/glsa/glsa-200409-23.xml http://www.securityfocus.com/bid/11180 http://www.snipsnap.org/space/start https://exchange.xforce.ibmcloud.com/vulnerabilities/17364