Description
CRLF injection vulnerability in the redirect feature in Sun Java System Web Server 6.1 and 7.0 before 20070802, when the redirect Server Application Function (SAF) uses the url-prefix parameter and escape is disabled, or an Error directive uses the url-prefix parameter in obj.conf, allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks.
References (6)
Core 6
Core References
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2007/2766
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/26326
Patch vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/25190
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/35783
Vendor Advisory vendor-advisory
x_refsource_sunalert
http://sunsolve.sun.com/search/document.do?assetkey=1-26-103003-1
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id?1018504
Scores
EPSS
0.0153
EPSS Percentile
81.5%
Details
Status
published
Products (2)
sun/java_system_web_server
6.1 (8 CPE variants)
sun/java_system_web_server
7.0
Published
Aug 07, 2007
Tracked Since
Feb 18, 2026