Nessus Plugin #14783

Plugin Index

Note: This file has been created from a downloaded version of the Nessus Plugins from http://www.nessus.org/. Therefore, the information here can be outdated.

Snitz Forums 2000 HTTP Response Splitting

Family:
CGI abuses : XSS
Category:
destructive_attack
Copyright:
This script is Copyright (C) 2004 Noam Rathaus
Summary:
Checks for the presence of an HTTP Response Splitting
Version:
$Revision: 1.3 $
Cve_id:
-
Bugtraq_id:
11201
Xrefs:
-
Description:

The remote host is using Snitz Forums 2000 - an ASP based forum/bbs.

There is a bug in this software which makes it vulnerable to HTTP response
splitting vulnerability.

An attacker may use this bug to preform web cache poisoning, xss attack, etc.

Solution : Upgrade to the latest version of this software
Risk factor: Medium
Generiert am 27.04.2005 um 18:49:54 Uhr.