CVE-2008-1770
Akamai Download Manager <2.2.3.6 - CRLF Injection
Title source: llmDescription
CRLF injection vulnerability in Akamai Download Manager ActiveX control before 2.2.3.6 allows remote attackers to force the download and execution of arbitrary files via a URL parameter containing an encoded LF followed by a malicious target line.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by cocoruder · htmlremotewindows
https://www.exploit-db.com/exploits/5741
References (8)
Scores
EPSS
0.1350
EPSS Percentile
94.2%
Details
CWE
CWE-94
Status
published
Products (4)
akamai/download_manager
2.0.4.4
akamai/download_manager
2.2.0.0
akamai/download_manager
2.2.1.0
akamai/download_manager
< 2.2.3.5
Published
Jun 04, 2008
Tracked Since
Feb 18, 2026