Vulnerability in Snitz_communications Snitz_forums_2000
CVE-2004-1687
CRLF injection vulnerability in down.asp for Snitz Forums 2000 3.4.04 allows remote attackers to perform HTTP Response Splitting attacks to modify expected HTML content from the server via the location parameter.
EPSS: 0.024 (82.2th percentile) — read the EPSS interpretation.
Affected products
- Snitz_communications Snitz_forums_2000 — versions 3.0, 3.1, 3.3
- N/a — versions n/a
References
- cve@mitre.org (Patch, x_refsource_SECUNIA, Vendor Advisory, third-party-advisory)
- cve@mitre.org (x_refsource_CONFIRM, Vendor Advisory)
- cve@mitre.org (mailing-list, x_refsource_BUGTRAQ)
- cve@mitre.org (Exploit, Patch, vdb-entry, x_refsource_BID, Vendor Advisory)
- cve@mitre.org (vdb-entry, x_refsource_XF)