PublicDate: 2005-12-28 01:03:00 UTC
Candidate: CVE-2005-4521
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-4521
Description:
 CRLF injection vulnerability in Mantis 1.0.0rc3 and earlier allows remote
 attackers to modify HTTP headers and conduct HTTP response splitting
 attacks via (1) the return parameter in login_cookie_test.php and (2) ref
 parameter in login_select_proj_page.php.
Ubuntu-Description:
Notes:
Priority: untriaged
Discovered-by:
Assigned-to:
CVSS:

Bugs:
dapper_mantis: released (0.19.4-2)
edgy_mantis: released (0.19.4-2)
feisty_mantis: released (0.19.4-2)
devel_mantis: released (0.19.4-2)
upstream_mantis: needs-triage