CVE-2010-0155
Summary
| CVE | CVE-2010-0155 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2010-09-14 17:00:00 UTC |
| Updated | 2018-10-10 19:51:00 UTC |
| Description | CRLF injection vulnerability in load.php in the Local Management Interface (LMI) on the IBM Proventia Network Mail Security System (PNMSS) appliance with firmware before 2.5 allows remote authenticated users to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the javaVersion parameter. |
Risk And Classification
Problem Types: CWE-94
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Ibm | Proventia Network Mail Security System Virtual Appliance | All | All | All | All |
| Application | Ibm | Proventia Network Mail Security System Virtual Appliance | All | All | All | All |
| Application | Ibm | Proventia Network Mail Security System Virtual Appliance Firmware | 1.6 | All | All | All |
| Application | Ibm | Proventia Network Mail Security System Virtual Appliance Firmware | 1.6 | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| SecurityFocus | BUGTRAQ | www.securityfocus.com | |
| Visibility on Instagram ; 10 Ways to Increase Brand Visibility on Instagram | MISC | www.ventuneac.net | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.