CVE-2008-0786
14.02.2008, 23:00
CRLF injection vulnerability in Cacti 0.8.7 before 0.8.7b and 0.8.6 before 0.8.6k, when running on older PHP interpreters, allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors.
| Vendor | Product | Version |
|---|---|---|
| cacti | cacti | 0.6.7 |
| cacti | cacti | 0.8 |
| cacti | cacti | 0.8.1 |
| cacti | cacti | 0.8.2 |
| cacti | cacti | 0.8.2a:a |
| cacti | cacti | 0.8.3 |
| cacti | cacti | 0.8.3a:a |
| cacti | cacti | 0.8.4 |
| cacti | cacti | 0.8.5 |
| cacti | cacti | 0.8.5a:a |
| cacti | cacti | 0.8.6c:c |
| cacti | cacti | 0.8.6f:f |
| cacti | cacti | 0.8.6i:i |
| cacti | cacti | 0.8.6j:j |
| cacti | cacti | 0.8.7 |
| cacti | cacti | 0.8.7a:a |
𝑥
= Vulnerable software versions
Debian Releases
Ubuntu Releases
References