Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Internet Information Services Other Vulnerability - CVE-2011-5279 - Vulnerability Database
Internet Information Services

Internet Information Services Other Vulnerability - CVE-2011-5279

Medium
Reference: CVE-2011-5279
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2011-5279
Title: Internet Information Services Other Vulnerability
Overview:

CRLF injection vulnerability in the CGI implementation in Microsoft Internet Information Services (IIS) 4.x and 5.x on Windows NT and Windows 2000 allows remote attackers to modify arbitrary uppercase environment variables via a n (newline) character in an HTTP header.