CVE-2008-0786
Published: 14 February 2008
CRLF injection vulnerability in Cacti 0.8.7 before 0.8.7b and 0.8.6 before 0.8.6k, when running on older PHP interpreters, allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors.
Priority
Status
Package | Release | Status |
---|---|---|
cacti Launchpad, Ubuntu, Debian |
dapper |
Ignored
(end of life)
|
edgy |
Ignored
(end of life, was needed)
|
|
feisty |
Ignored
(end of life, was needed)
|
|
gutsy |
Ignored
(end of life, was needed)
|
|
hardy |
Released
(0.8.7b-1)
|
|
intrepid |
Released
(0.8.7b-1)
|
|
jaunty |
Released
(0.8.7b-1)
|
|
karmic |
Released
(0.8.7b-1)
|
|
upstream |
Not vulnerable
(0.8.7b, 0.8.6k)
|