CVE-2013-6009 Information

Description

CRLF injection vulnerability in Open-Xchange AppSuite before 7.2.2 when using AJP in certain conditions allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the ajax/defer servlet.

Reference

http://www.securityfocus.com/archive/1/528940