Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple CRLF injection vulnerabilities in the HTTP server in IBM Lotus Domino 8.5.x before 8.5.4 allow remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via crafted input involving (1) Mozilla Firefox 3.0.9 and earlier or (2) unspecified browsers.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM Lotus Domino HTTP 响应拆分漏洞
Vulnerability Description
IBM Lotus Domino(又名IBM Domino)是美国IBM公司的一套用于托管社交商务应用的平台。该平台提供一个管理客户端和Web浏览器界面,并具有易于管理、总拥有成本低、高度安全等特点。 IBM Lotus Domino 8.5.4之前的8.5.x版本中的HTTP服务器中存在多个CRLF注入漏洞。远程攻击者可利用这些漏洞通过包含(1)Mozilla Firefox 3.0.9版本和早期版本或(2)未明浏览器中特制的输入,注入任意HTTP头并进行HTTP响应拆分攻击。
CVSS Information
N/A
Vulnerability Type
N/A