Computer Security
[EN] securityvulns.ru no-pyccku


Multiple browsers digest authentication request splitting
Published:28.04.2007
Source:
SecurityVulns ID:7643
Type:client
Threat Level:
5/10
Description:It's possible to inject new line characters to HTTP request headers thorugh username.
Affected:MICROSOFT : Windows XP
 MICROSOFT : Windows 2003 Server
 MOZILLA : Firefox 2.0
 MICROSOFT : Windows Vista
Original documentdocumentStefano Di Paola, IE 7 and Firefox Browsers Digest Authentication Request Splitting (28.04.2007)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod