httprint 202.0 - HTTP Response Server Field Arbitrary Script Injection
| EKU-ID: 32269 | CVE: CVE-2005-4502;OSVDB-21916 | OSVDB-ID: |
| Author: Mariano Nunez Di Croce | Published: 2005-12-22 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 32269 | CVE: CVE-2005-4502;OSVDB-21916 | OSVDB-ID: |
| Author: Mariano Nunez Di Croce | Published: 2005-12-22 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
source: https://www.securityfocus.com/bid/16031/info
httprint is prone to multiple remote vulnerabilities.
The first issue may allow remote attackers to execute arbitrary HTML and script code in a user's browser.
The second issue may allow remote attackers to crash an instance of the application.
httprint version 202 is vulnerable to these issues.
SecServerSignature "Microsoft-IIS/5.0<script>alert('test')</script>"