09 Oct 2016
CVE-2016-5325 Vulnerability
CRLF injection vulnerability in the ServerResponse#writeHead function in Node.js 0.10.x before 0.10.47, 0.12.x before 0.12.16, 4.x before 4.6.0, and 6.x before 6.7.0 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the reason argument. (CVSS:0.0) (Last Update:2016-10-10)
Vulnerability Details : CRLF injection vulnerability in the ServerResponse#writeHead function in Node.js 0.10.x before 0.10.47, 0.12.x before 0.12.16, 4.x before 4.6.0, and 6.x before 6.7.0 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the reason argument. Publish Date : 2016-10-10 Last Update Date : 2016-10-10 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2016-5325
- References For CVE-2016-5325 | |||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2016-5325There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information) |