CVE-2013-6009

Publication date

2013-10-03 19:00:00

Family

mitre

State

PUBLISHED

Description

CRLF injection vulnerability in Open-Xchange AppSuite before 7.2.2, when using AJP in certain conditions, allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the ajax/defer servlet.