This application requires Javascript for optimal performance.

HTTP.Response.Splitting.Information.Disclosure

Release Date Oct 21, 2011
Severity medium
Impact Information Disclosure and other attacks.
Description This indicates a possible attempt to exploit Cross-Site Scripting, HTTP Response Splitting and URI Redirection vulnerabilities in multiple vendors' web Servers.
Affected Products Adobe Systems Macromedia ColdFusion Server MX 2.0 Adobe Systems Macromedia ColdFusion Server MX 2.0.28 Adobe Systems Macromedia ColdFusion Server MX 2.0.32 Adobe Systems Macromedia ColdFusion Server MX 2.0.35 Adobe Systems Macromedia ColdFusion Server MX 2.0.36 Adobe Systems Macromedia ColdFusion Server MX 2.0.37 Adobe Systems Macromedia ColdFusion Server MX 2.0.38 Adobe Systems Macromedia ColdFusion Server MX 2.0.39 Adobe Systems Macromedia ColdFusion Server MX 2.0.40 Adobe Systems Macromedia ColdFusion Server MX 2.0.41 Adobe Systems Macromedia ColdFusion Server MX 2.0.42 Adobe Systems Macromedia ColdFusion Server MX 2.0.43 Adobe Systems Macromedia ColdFusion Server MX 2.0.44 Adobe Systems Macromedia ColdFusion Server MX 2.0.45 Adobe Systems Macromedia ColdFusion Server MX 2.0.46 Adobe Systems Macromedia ColdFusion Server MX 2.0.47 Adobe Systems Macromedia ColdFusion Server MX 2.0.48 Adobe Systems Macromedia ColdFusion Server MX 4.1.24 Adobe Systems Macromedia ColdFusion Server MX 5.0 Adobe Systems Macromedia ColdFusion Server MX 5.0.1 Adobe Systems Macromedia ColdFusion Server MX 5.0.2 Adobe Systems Macromedia ColdFusion Server MX 5.0.2.1 Adobe Systems Macromedia ColdFusion Server MX 5.1 Adobe Systems Macromedia ColdFusion Server MX 5.1.1 Adobe Systems Macromedia ColdFusion Server MX 6.0 Adobe Systems Macromedia ColdFusion Server MX 6.1 Adobe Systems Macromedia ColdFusion Server MX Server and Express 8.1 Adobe Systems Macromedia ColdFusion Server MX Server and Express 8.1 SP1 Adobe Systems Macromedia ColdFusion Server MX Server and Express for Win32 8.1 Adobe Systems Macromedia ColdFusion Server MX Server and Express for Win32 8.1 SP1 Apache Software Foundation HTTP Server 2.0 Apache Software Foundation HTTP Server 2.0.28 Apache Software Foundation HTTP Server 2.0.32 Apache Software Foundation HTTP Server 2.0.35 Apache Software Foundation HTTP Server 2.0.36 Apache Software Foundation HTTP Server 2.0.37 Apache Software Foundation HTTP Server 2.0.38 Apache Software Foundation HTTP Server 2.0.39 Apache Software Foundation HTTP Server 2.0.40 Apache Software Foundation HTTP Server 2.0.41 Apache Software Foundation HTTP Server 2.0.42 Apache Software Foundation HTTP Server 2.0.43 Apache Software Foundation HTTP Server 2.0.44 Apache Software Foundation HTTP Server 2.0.45 Apache Software Foundation HTTP Server 2.0.46 Apache Software Foundation HTTP Server 2.0.47 Apache Software Foundation HTTP Server 2.0.48 Apache Software Foundation Tomcat 2.0 Apache Software Foundation Tomcat 2.0.28 Apache Software Foundation Tomcat 2.0.32 Apache Software Foundation Tomcat 2.0.35 Apache Software Foundation Tomcat 2.0.36 Apache Software Foundation Tomcat 2.0.37 Apache Software Foundation Tomcat 2.0.38 Apache Software Foundation Tomcat 2.0.39 Apache Software Foundation Tomcat 2.0.40 Apache Software Foundation Tomcat 2.0.41 Apache Software Foundation Tomcat 2.0.42 Apache Software Foundation Tomcat 2.0.43 Apache Software Foundation Tomcat 2.0.44 Apache Software Foundation Tomcat 2.0.45 Apache Software Foundation Tomcat 2.0.46 Apache Software Foundation Tomcat 2.0.47 Apache Software Foundation Tomcat 2.0.48 Apache Software Foundation Tomcat 4.1.24 BEA Systems WebLogic 2.0 BEA Systems WebLogic 2.0.28 BEA Systems WebLogic 2.0.32 BEA Systems WebLogic 2.0.35 BEA Systems WebLogic 2.0.36 BEA Systems WebLogic 2.0.37 BEA Systems WebLogic 2.0.38 BEA Systems WebLogic 2.0.39 BEA Systems WebLogic 2.0.40 BEA Systems WebLogic 2.0.41 BEA Systems WebLogic 2.0.42 BEA Systems WebLogic 2.0.43 BEA Systems WebLogic 2.0.44 BEA Systems WebLogic 2.0.45 BEA Systems WebLogic 2.0.46 BEA Systems WebLogic 2.0.47 BEA Systems WebLogic 2.0.48 BEA Systems WebLogic 4.1.24 BEA Systems WebLogic Server and Express 8.1 BEA Systems WebLogic Server and Express 8.1 SP1 BEA Systems WebLogic Server and Express for Win32 8.1 BEA Systems WebLogic Server and Express for Win32 8.1 SP1 IBM WebSphere Application Server 2.0 IBM WebSphere Application Server 2.0.28 IBM WebSphere Application Server 2.0.32 IBM WebSphere Application Server 2.0.35 IBM WebSphere Application Server 2.0.36 IBM WebSphere Application Server 2.0.37 IBM WebSphere Application Server 2.0.38 IBM WebSphere Application Server 2.0.39 IBM WebSphere Application Server 2.0.40 IBM WebSphere Application Server 2.0.41 IBM WebSphere Application Server 2.0.42 IBM WebSphere Application Server 2.0.43 IBM WebSphere Application Server 2.0.44 IBM WebSphere Application Server 2.0.45 IBM WebSphere Application Server 2.0.46 IBM WebSphere Application Server 2.0.47 IBM WebSphere Application Server 2.0.48 IBM WebSphere Application Server 4.1.24 IBM WebSphere Application Server 5.0 IBM WebSphere Application Server 5.0.1 IBM WebSphere Application Server 5.0.2 IBM WebSphere Application Server 5.0.2.1 IBM WebSphere Application Server 5.1 IBM WebSphere Application Server 5.1.1 IBM WebSphere Application Server Server and Express 8.1 IBM WebSphere Application Server Server and Express 8.1 SP1 IBM WebSphere Application Server Server and Express for Win32 8.1 IBM WebSphere Application Server Server and Express for Win32 8.1 SP1 Microsoft Active Server Pages 2.0 Microsoft Active Server Pages 2.0.28 Microsoft Active Server Pages 2.0.32 Microsoft Active Server Pages 2.0.35 Microsoft Active Server Pages 2.0.36 Microsoft Active Server Pages 2.0.37 Microsoft Active Server Pages 2.0.38 Microsoft Active Server Pages 2.0.39 Microsoft Active Server Pages 2.0.40 Microsoft Active Server Pages 2.0.41 Microsoft Active Server Pages 2.0.42 Microsoft Active Server Pages 2.0.43 Microsoft Active Server Pages 2.0.44 Microsoft Active Server Pages 2.0.45 Microsoft Active Server Pages 2.0.46 Microsoft Active Server Pages 2.0.47 Microsoft Active Server Pages 2.0.48 Microsoft Active Server Pages 3.0 Microsoft Active Server Pages 4.1.24 Microsoft Active Server Pages 5.0 Microsoft Active Server Pages 5.0.1 Microsoft Active Server Pages 5.0.2 Microsoft Active Server Pages 5.0.2.1 Microsoft Active Server Pages 5.1 Microsoft Active Server Pages 5.1.1 Microsoft Active Server Pages 6.0 Microsoft Active Server Pages 6.1 Microsoft Active Server Pages Server and Express 8.1 Microsoft Active Server Pages Server and Express 8.1 SP1 Microsoft Active Server Pages Server and Express for Win32 8.1 Microsoft Active Server Pages Server and Express for Win32 8.1 SP1 Microsoft Active Server Pages .NET 1.0 Microsoft Active Server Pages .NET 2.0 Microsoft Active Server Pages .NET 2.0.28 Microsoft Active Server Pages .NET 2.0.32 Microsoft Active Server Pages .NET 2.0.35 Microsoft Active Server Pages .NET 2.0.36 Microsoft Active Server Pages .NET 2.0.37 Microsoft Active Server Pages .NET 2.0.38 Microsoft Active Server Pages .NET 2.0.39 Microsoft Active Server Pages .NET 2.0.40 Microsoft Active Server Pages .NET 2.0.41 Microsoft Active Server Pages .NET 2.0.42 Microsoft Active Server Pages .NET 2.0.43 Microsoft Active Server Pages .NET 2.0.44 Microsoft Active Server Pages .NET 2.0.45 Microsoft Active Server Pages .NET 2.0.46 Microsoft Active Server Pages .NET 2.0.47 Microsoft Active Server Pages .NET 2.0.48 Microsoft Active Server Pages .NET 3.0 Microsoft Active Server Pages .NET 4.1.24 Microsoft Active Server Pages .NET 5.0 Microsoft Active Server Pages .NET 5.0.1 Microsoft Active Server Pages .NET 5.0.2 Microsoft Active Server Pages .NET 5.0.2.1 Microsoft Active Server Pages .NET 5.1 Microsoft Active Server Pages .NET 5.1.1 Microsoft Active Server Pages .NET 6.0 Microsoft Active Server Pages .NET 6.1 Microsoft Active Server Pages .NET Server and Express 8.1 Microsoft Active Server Pages .NET Server and Express 8.1 SP1 Microsoft Active Server Pages .NET Server and Express for Win32 8.1 Microsoft Active Server Pages .NET Server and Express for Win32 8.1 SP1 Microsoft Internet Explorer 1.0 Microsoft Internet Explorer 2.0 Microsoft Internet Explorer 2.0.28 Microsoft Internet Explorer 2.0.32 Microsoft Internet Explorer 2.0.35 Microsoft Internet Explorer 2.0.36 Microsoft Internet Explorer 2.0.37 Microsoft Internet Explorer 2.0.38 Microsoft Internet Explorer 2.0.39 Microsoft Internet Explorer 2.0.40 Microsoft Internet Explorer 2.0.41 Microsoft Internet Explorer 2.0.42 Microsoft Internet Explorer 2.0.43 Microsoft Internet Explorer 2.0.44 Microsoft Internet Explorer 2.0.45 Microsoft Internet Explorer 2.0.46 Microsoft Internet Explorer 2.0.47 Microsoft Internet Explorer 2.0.48 Microsoft Internet Explorer 3.0 Microsoft Internet Explorer 4.1.24 Microsoft Internet Explorer 5.0 Microsoft Internet Explorer 5.0.1 Microsoft Internet Explorer 5.0.2 Microsoft Internet Explorer 5.0.2.1 Microsoft Internet Explorer 5.1 Microsoft Internet Explorer 5.1.1 Microsoft Internet Explorer 6.0 Microsoft Internet Explorer 6.0 SP1 Microsoft Internet Explorer 6.1 Microsoft Internet Explorer Server and Express 8.1 Microsoft Internet Explorer Server and Express 8.1 SP1 Microsoft Internet Explorer Server and Express for Win32 8.1 Microsoft Internet Explorer Server and Express for Win32 8.1 SP1 Microsoft Internet Security and Acceleration Server 1.0 Microsoft Internet Security and Acceleration Server 2.0 Microsoft Internet Security and Acceleration Server 2.0.28 Microsoft Internet Security and Acceleration Server 2.0.32 Microsoft Internet Security and Acceleration Server 2.0.35 Microsoft Internet Security and Acceleration Server 2.0.36 Microsoft Internet Security and Acceleration Server 2.0.37 Microsoft Internet Security and Acceleration Server 2.0.38 Microsoft Internet Security and Acceleration Server 2.0.39 Microsoft Internet Security and Acceleration Server 2.0.40 Microsoft Internet Security and Acceleration Server 2.0.41 Microsoft Internet Security and Acceleration Server 2.0.42 Microsoft Internet Security and Acceleration Server 2.0.43 Microsoft Internet Security and Acceleration Server 2.0.44 Microsoft Internet Security and Acceleration Server 2.0.45 Microsoft Internet Security and Acceleration Server 2.0.46 Microsoft Internet Security and Acceleration Server 2.0.47 Microsoft Internet Security and Acceleration Server 2.0.48 Microsoft Internet Security and Acceleration Server 2000 Microsoft Internet Security and Acceleration Server 2000 SP1 Microsoft Internet Security and Acceleration Server 3.0 Microsoft Internet Security and Acceleration Server 4.1.24 Microsoft Internet Security and Acceleration Server 5.0 Microsoft Internet Security and Acceleration Server 5.0.1 Microsoft Internet Security and Acceleration Server 5.0.2 Microsoft Internet Security and Acceleration Server 5.0.2.1 Microsoft Internet Security and Acceleration Server 5.1 Microsoft Internet Security and Acceleration Server 5.1.1 Microsoft Internet Security and Acceleration Server 6.0 Microsoft Internet Security and Acceleration Server 6.0 SP1 Microsoft Internet Security and Acceleration Server 6.1 Microsoft Internet Security and Acceleration Server Server and Express 8.1 Microsoft Internet Security and Acceleration Server Server and Express 8.1 SP1 Microsoft Internet Security and Acceleration Server Server and Express for Win32 8.1 Microsoft Internet Security and Acceleration Server Server and Express for Win32 8.1 SP1 Network Appliance NetCache 1.0 Network Appliance NetCache 2.0 Network Appliance NetCache 2.0.28 Network Appliance NetCache 2.0.32 Network Appliance NetCache 2.0.35 Network Appliance NetCache 2.0.36 Network Appliance NetCache 2.0.37 Network Appliance NetCache 2.0.38 Network Appliance NetCache 2.0.39 Network Appliance NetCache 2.0.40 Network Appliance NetCache 2.0.41 Network Appliance NetCache 2.0.42 Network Appliance NetCache 2.0.43 Network Appliance NetCache 2.0.44 Network Appliance NetCache 2.0.45 Network Appliance NetCache 2.0.46 Network Appliance NetCache 2.0.47 Network Appliance NetCache 2.0.48 Network Appliance NetCache 2.4 Network Appliance NetCache 2.4 DEVEL2 Network Appliance NetCache 2.4 DEVEL4 Network Appliance NetCache 2.4 PRE-STABLE Network Appliance NetCache 2.4 PRE-STABLE2 Network Appliance NetCache 2.4 STABLE1 Network Appliance NetCache 2.4 STABLE2 Network Appliance NetCache 2.4 STABLE2-2 Network Appliance NetCache 2.4 STABLE2-3 Network Appliance NetCache 2.4 STABLE3 Network Appliance NetCache 2.4 STABLE4 Network Appliance NetCache 2.4 STABLE6 Network Appliance NetCache 2.4 STABLE7 Network Appliance NetCache 2000 Network Appliance NetCache 2000 SP1 Network Appliance NetCache 3.0 Network Appliance NetCache 4.1.24 Network Appliance NetCache 5.0 Network Appliance NetCache 5.0.1 Network Appliance NetCache 5.0.2 Network Appliance NetCache 5.0.2.1 Network Appliance NetCache 5.1 Network Appliance NetCache 5.1.1 Network Appliance NetCache 5.2 Network Appliance NetCache 6.0 Network Appliance NetCache 6.0 SP1 Network Appliance NetCache 6.1 Network Appliance NetCache Server and Express 8.1 Network Appliance NetCache Server and Express 8.1 SP1 Network Appliance NetCache Server and Express for Win32 8.1 Network Appliance NetCache Server and Express for Win32 8.1 SP1 Squid Project Squid Web Proxy Cache 6.0 Squid Project Squid Web Proxy Cache 1.0 Squid Project Squid Web Proxy Cache 2.0 Squid Project Squid Web Proxy Cache 2.0.28 Squid Project Squid Web Proxy Cache 2.0.32 Squid Project Squid Web Proxy Cache 2.0.35 Squid Project Squid Web Proxy Cache 2.0.36 Squid Project Squid Web Proxy Cache 2.0.37 Squid Project Squid Web Proxy Cache 2.0.38 Squid Project Squid Web Proxy Cache 2.0.39 Squid Project Squid Web Proxy Cache 2.0.40 Squid Project Squid Web Proxy Cache 2.0.41 Squid Project Squid Web Proxy Cache 2.0.42 Squid Project Squid Web Proxy Cache 2.0.43 Squid Project Squid Web Proxy Cache 2.0.44 Squid Project Squid Web Proxy Cache 2.0.45 Squid Project Squid Web Proxy Cache 2.0.46 Squid Project Squid Web Proxy Cache 2.0.47 Squid Project Squid Web Proxy Cache 2.0.48 Squid Project Squid Web Proxy Cache 2.4 Squid Project Squid Web Proxy Cache 2.4 DEVEL2 Squid Project Squid Web Proxy Cache 2.4 DEVEL4 Squid Project Squid Web Proxy Cache 2.4 PRE-STABLE Squid Project Squid Web Proxy Cache 2.4 PRE-STABLE2 Squid Project Squid Web Proxy Cache 2.4 STABLE1 Squid Project Squid Web Proxy Cache 2.4 STABLE2 Squid Project Squid Web Proxy Cache 2.4 STABLE2-2 Squid Project Squid Web Proxy Cache 2.4 STABLE2-3 Squid Project Squid Web Proxy Cache 2.4 STABLE3 Squid Project Squid Web Proxy Cache 2.4 STABLE4 Squid Project Squid Web Proxy Cache 2.4 STABLE6 Squid Project Squid Web Proxy Cache 2.4 STABLE7 Squid Project Squid Web Proxy Cache 2000 Squid Project Squid Web Proxy Cache 2000 SP1 Squid Project Squid Web Proxy Cache 3.0 Squid Project Squid Web Proxy Cache 4.1.24 Squid Project Squid Web Proxy Cache 5.0 Squid Project Squid Web Proxy Cache 5.0.1 Squid Project Squid Web Proxy Cache 5.0.2 Squid Project Squid Web Proxy Cache 5.0.2.1 Squid Project Squid Web Proxy Cache 5.1 Squid Project Squid Web Proxy Cache 5.1.1 Squid Project Squid Web Proxy Cache 6.0 SP1 Squid Project Squid Web Proxy Cache 6.1 Squid Project Squid Web Proxy Cache Server and Express 8.1 Squid Project Squid Web Proxy Cache Server and Express 8.1 SP1 Squid Project Squid Web Proxy Cache Server and Express for Win32 8.1 Squid Project Squid Web Proxy Cache Server and Express for Win32 8.1 SP1 Sun Microsystems Java System Web Server 1.0 Sun Microsystems Java System Web Server 2.0 Sun Microsystems Java System Web Server 2.0.28 Sun Microsystems Java System Web Server 2.0.32 Sun Microsystems Java System Web Server 2.0.35 Sun Microsystems Java System Web Server 2.0.36 Sun Microsystems Java System Web Server 2.0.37 Sun Microsystems Java System Web Server 2.0.38 Sun Microsystems Java System Web Server 2.0.39 Sun Microsystems Java System Web Server 2.0.40 Sun Microsystems Java System Web Server 2.0.41 Sun Microsystems Java System Web Server 2.0.42 Sun Microsystems Java System Web Server 2.0.43 Sun Microsystems Java System Web Server 2.0.44 Sun Microsystems Java System Web Server 2.0.45 Sun Microsystems Java System Web Server 2.0.46 Sun Microsystems Java System Web Server 2.0.47 Sun Microsystems Java System Web Server 2.0.48 Sun Microsystems Java System Web Server 2.4 Sun Microsystems Java System Web Server 2.4 DEVEL2 Sun Microsystems Java System Web Server 2.4 DEVEL4 Sun Microsystems Java System Web Server 2.4 PRE-STABLE Sun Microsystems Java System Web Server 2.4 PRE-STABLE2 Sun Microsystems Java System Web Server 2.4 STABLE1 Sun Microsystems Java System Web Server 2.4 STABLE2 Sun Microsystems Java System Web Server 2.4 STABLE2-2 Sun Microsystems Java System Web Server 2.4 STABLE2-3 Sun Microsystems Java System Web Server 2.4 STABLE3 Sun Microsystems Java System Web Server 2.4 STABLE4 Sun Microsystems Java System Web Server 2.4 STABLE6 Sun Microsystems Java System Web Server 2.4 STABLE7 Sun Microsystems Java System Web Server 2000 Sun Microsystems Java System Web Server 2000 SP1 Sun Microsystems Java System Web Server 3.0 Sun Microsystems Java System Web Server 4.1.24 Sun Microsystems Java System Web Server 5.0 Sun Microsystems Java System Web Server 5.0.1 Sun Microsystems Java System Web Server 5.0.2 Sun Microsystems Java System Web Server 5.0.2.1 Sun Microsystems Java System Web Server 5.1 Sun Microsystems Java System Web Server 5.1.1 Sun Microsystems Java System Web Server 5.2 Sun Microsystems Java System Web Server 6.0 Sun Microsystems Java System Web Server 6.0 SP1 Sun Microsystems Java System Web Server 6.1 Sun Microsystems Java System Web Server Server and Express 8.1 Sun Microsystems Java System Web Server Server and Express 8.1 SP1 Sun Microsystems Java System Web Server Server and Express for Win32 8.1 Sun Microsystems Java System Web Server Server and Express for Win32 8.1 SP1
Recommended Actions Apply the latest patch or upgrade from the vendor.
Coverage IPS VCM
Reference/s http://www.securityfocus.com/bid/9804 (BugTraq)

Reference: VID-29670

Current Threat Level

Vulnerabilities

Virus/Spyware

Spam

PGP Keys

Contact Form

Copyright © 2012 Fortinet Inc. All Rights Reserved