CVE-2009-0868

EUVD-2009-0865
CRLF injection vulnerability in the WebLink template in Fujitsu Jasmine2000 Enterprise Edition allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.8 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 69%
Affected Products (NVD)
VendorProductVersion
fujitsujasmine2000
*
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://secunia.com/advisories/33971
http://www.fujitsu.com/global/support/software/security/products-f/jasmine-200901e.html
http://www.securityfocus.com/bid/33832
https://exchange.xforce.ibmcloud.com/vulnerabilities/48818
http://secunia.com/advisories/33971
http://www.fujitsu.com/global/support/software/security/products-f/jasmine-200901e.html
http://www.securityfocus.com/bid/33832
https://exchange.xforce.ibmcloud.com/vulnerabilities/48818