CVE-2005-4830
Published: 31 December 2005
CRLF injection vulnerability in viewcvs in ViewCVS 0.9.2 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in the content-type parameter.
Priority
Status
Package | Release | Status |
---|---|---|
viewcvs Launchpad, Ubuntu, Debian |
dapper |
Ignored
(end of life)
|
edgy |
Ignored
(end of life, was needed)
|
|
feisty |
Ignored
(end of life, was needed)
|
|
gutsy |
Does not exist
|
|
hardy |
Does not exist
|
|
intrepid |
Does not exist
|
|
jaunty |
Does not exist
|
|
karmic |
Does not exist
|
|
upstream |
Needs triage
|
|
viewvc Launchpad, Ubuntu, Debian |
dapper |
Does not exist
|
edgy |
Does not exist
|
|
feisty |
Does not exist
|
|
gutsy |
Released
(0.9.4+svn20060318-1)
|
|
hardy |
Released
(0.9.4+svn20060318-1)
|
|
intrepid |
Released
(0.9.4+svn20060318-1)
|
|
jaunty |
Released
(0.9.4+svn20060318-1)
|
|
karmic |
Released
(0.9.4+svn20060318-1)
|
|
upstream |
Released
(0.9.3)
|