CVE-2008-2497

N/A Unknown

Published: May 28, 2008 Modified: April 23, 2026

Description

CRLF injection vulnerability in Mambo before 4.6.4 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://forum.mambo-foundation.org/showthread.php?t=11799

Source: cve@mitre.org

Patch

http://secunia.com/advisories/30343

Source: cve@mitre.org

Vendor Advisory

http://www.securityfocus.com/bid/29373

Source: cve@mitre.org

Patch

http://www.vupen.com/english/advisories/2008/1660/references

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/42645

Source: cve@mitre.org

http://forum.mambo-foundation.org/showthread.php?t=11799