CVE-2010-4411

Severity

43%

Complexity

86%

Confidentiality

48%

Unspecified vulnerability in CGI.pm 3.50 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unknown vectors. NOTE: this issue exists because of an incomplete fix for CVE-2010-2761.

Unspecified vulnerability in CGI.pm 3.50 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unknown vectors. NOTE: this issue exists because of an incomplete fix for CVE-2010-2761.

CVSS 2.0 Base Score 4.3. CVSS Attack Vector: network. CVSS Attack Complexity: medium. CVSS Vector: (AV:N/AC:M/Au:N/C:N/I:P/A:N).

Overview

Type

Andy Armstrong CGI.pm

First reported 14 years ago

2010-12-06 20:13:00

Last updated 11 years ago

2014-02-12 04:24:00

Affected Software

Andy Armstrong CGI.pm 1.4

1.4

Andy Armstrong CGI.pm 1.42

1.42

Andy Armstrong CGI.pm 1.43

1.43

Andy Armstrong CGI.pm 1.44

1.44

Andy Armstrong CGI.pm 1.45

1.45

Andy Armstrong CGI.pm 1.50

1.50

Andy Armstrong CGI.pm 1.51

1.51

Andy Armstrong CGI.pm 1.52

1.52

Andy Armstrong CGI.pm 1.53

1.53

Andy Armstrong CGI.pm 1.54

1.54

Andy Armstrong CGI.pm 1.55

1.55

Andy Armstrong CGI.pm 1.56

1.56

Andy Armstrong CGI.pm 1.57

1.57

Andy Armstrong CGI.pm 2.0

2.0

Andy Armstrong CGI.pm 2.01

2.01

Andy Armstrong CGI.pm 2.13

2.13

Andy Armstrong CGI.pm 2.14

2.14

Andy Armstrong CGI.pm 2.15

2.15

Andy Armstrong CGI.pm 2.16

2.16

Andy Armstrong CGI.pm 2.17

2.17

Andy Armstrong CGI.pm 2.18

2.18

Andy Armstrong CGI.pm 2.19

2.19

Andy Armstrong CGI.pm 2.20

2.20

Andy Armstrong CGI.pm 2.21

2.21

Andy Armstrong CGI.pm 2.22

2.22

Andy Armstrong CGI.pm 2.23

2.23

Andy Armstrong CGI.pm 2.24

2.24

Andy Armstrong CGI.pm 2.25

2.25

Andy Armstrong CGI.pm 2.26

2.26

Andy Armstrong CGI.pm 2.27

2.27

Andy Armstrong CGI.pm 2.28

2.28

Andy Armstrong CGI.pm 2.29

2.29

Andy Armstrong CGI.pm 2.30

2.30

Andy Armstrong CGI.pm 2.31

2.31

Andy Armstrong CGI.pm 2.32

2.32

Andy Armstrong CGI.pm 2.33

2.33

Andy Armstrong CGI.pm 2.34

2.34

Andy Armstrong CGI.pm 2.35

2.35

Andy Armstrong CGI.pm 2.36

2.36

Andy Armstrong CGI.pm 2.37

2.37

Andy Armstrong CGI.pm 2.38

2.38

Andy Armstrong CGI.pm 2.39

2.39

Andy Armstrong CGI.pm 2.40

2.40

Andy Armstrong CGI.pm 2.41

2.41

Andy Armstrong CGI.pm 2.42

2.42

Andy Armstrong CGI.pm 2.43

2.43

Andy Armstrong CGI.pm 2.44

2.44

Andy Armstrong CGI.pm 2.45

2.45

Andy Armstrong CGI.pm 2.46

2.46

Andy Armstrong CGI.pm 2.47

2.47

Andy Armstrong CGI.pm 2.48

2.48

Andy Armstrong CGI.pm 2.49

2.49

Andy Armstrong CGI.pm 2.50

2.50

Andy Armstrong CGI.pm 2.51

2.51

Andy Armstrong CGI.pm 2.52

2.52

Andy Armstrong CGI.pm 2.53

2.53

Andy Armstrong CGI.pm 2.54

2.54

Andy Armstrong CGI.pm 2.55

2.55

Andy Armstrong CGI.pm 2.56

2.56

Andy Armstrong CGI.pm 2.57

2.57

Andy Armstrong CGI.pm 2.58

2.58

Andy Armstrong CGI.pm 2.59

2.59

Andy Armstrong CGI.pm 2.60

2.60

Andy Armstrong CGI.pm 2.61

2.61

Andy Armstrong CGI.pm 2.62

2.62

Andy Armstrong CGI.pm 2.63

2.63

Andy Armstrong CGI.pm 2.64

2.64

Andy Armstrong CGI.pm 2.65

2.65

Andy Armstrong CGI.pm 2.66

2.66

Andy Armstrong CGI.pm 2.67

2.67

Andy Armstrong CGI.pm 2.68

2.68

Andy Armstrong CGI.pm 2.69

2.69

Andy Armstrong CGI.pm 2.70

2.70

Andy Armstrong CGI.pm 2.71

2.71

Andy Armstrong CGI.pm 2.72

2.72

Andy Armstrong CGI.pm 2.73

2.73

Andy Armstrong CGI.pm 2.74

2.74

Andy Armstrong CGI.pm 2.75

2.75

Andy Armstrong CGI.pm 2.76

2.76

Andy Armstrong CGI.pm 2.77

2.77

Andy Armstrong CGI.pm 2.78

2.78

Andy Armstrong CGI.pm 2.79

2.79

Andy Armstrong CGI.pm 2.80

2.80

Andy Armstrong CGI.pm 2.81

2.81

Andy Armstrong CGI.pm 2.82

2.82

Andy Armstrong CGI.pm 2.83

2.83

Andy Armstrong CGI.pm 2.84

2.84

Andy Armstrong CGI.pm 2.85

2.85

Andy Armstrong CGI.pm 2.86

2.86

Andy Armstrong CGI.pm 2.87

2.87

Andy Armstrong CGI.pm 2.88

2.88

Andy Armstrong CGI.pm 2.89

2.89

Andy Armstrong CGI.pm 2.90

2.90

Andy Armstrong CGI.pm 2.91

2.91

Andy Armstrong CGI.pm 2.92

2.92

Andy Armstrong CGI.pm 2.93

2.93

Andy Armstrong CGI.pm 2.94

2.94

Andy Armstrong CGI.pm 2.95

2.95

Andy Armstrong CGI.pm 2.96

2.96

Andy Armstrong CGI.pm 2.97

2.97

Andy Armstrong CGI.pm 2.98

2.98

Andy Armstrong CGI.pm 2.99

2.99

Andy Armstrong CGI.pm 2.751

2.751

Andy Armstrong CGI.pm 2.752

2.752

Andy Armstrong CGI.pm 3.00

3.00

Andy Armstrong CGI.pm 3.01

3.01

Andy Armstrong CGI.pm 3.02

3.02

Andy Armstrong CGI.pm 3.03

3.03

Andy Armstrong CGI.pm 3.04

3.04

Andy Armstrong CGI.pm 3.05

3.05

Andy Armstrong CGI.pm 3.06

3.06

Andy Armstrong CGI.pm 3.07

3.07

Andy Armstrong CGI.pm 3.08

3.08

Andy Armstrong CGI.pm 3.09

3.09

Andy Armstrong CGI.pm 3.10

3.10

Andy Armstrong CGI.pm 3.11

3.11

Andy Armstrong CGI.pm 3.12

3.12

Andy Armstrong CGI.pm 3.13

3.13

Andy Armstrong CGI.pm 3.14

3.14

Andy Armstrong CGI.pm 3.15

3.15

Andy Armstrong CGI.pm 3.16

3.16

Andy Armstrong CGI.pm 3.17

3.17

Andy Armstrong CGI.pm 3.18

3.18

Andy Armstrong CGI.pm 3.19

3.19

Andy Armstrong CGI.pm 3.20

3.20

Andy Armstrong CGI.pm 3.21

3.21

Andy Armstrong CGI.pm 3.22

3.22

Andy Armstrong CGI.pm 3.23

3.23

Andy Armstrong CGI.pm 3.24

3.24

Andy Armstrong CGI.pm 3.25

3.25

Andy Armstrong CGI.pm 3.26

3.26

Andy Armstrong CGI.pm 3.27

3.27

Andy Armstrong CGI.pm 3.28

3.28

Andy Armstrong CGI.pm 3.29

3.29

Andy Armstrong CGI.pm 3.30

3.30

Andy Armstrong CGI.pm 3.31

3.31

Andy Armstrong CGI.pm 3.32

3.32

Andy Armstrong CGI.pm 3.33

3.33

Andy Armstrong CGI.pm 3.34

3.34

Andy Armstrong CGI.pm 3.35

3.35

Andy Armstrong CGI.pm 3.36

3.36

Andy Armstrong CGI.pm 3.37

3.37

Andy Armstrong CGI.pm 3.38

3.38

Andy Armstrong CGI.pm 3.39

3.39

Andy Armstrong CGI.pm 3.40

3.40

Andy Armstrong CGI.pm 3.41

3.41

Andy Armstrong CGI.pm 3.42

3.42

Andy Armstrong CGI.pm 3.43

3.43

Andy Armstrong CGI.pm 3.44

3.44

Andy Armstrong CGI.pm 3.45

3.45

Andy Armstrong CGI.pm 3.46

3.46

Andy Armstrong CGI.pm 3.47

3.47

Andy Armstrong CGI.pm 3.48

3.48

Andy Armstrong CGI.pm 3.49

3.49

References

FEDORA-2011-0741

FEDORA-2011-0755

SUSE-SR:2011:002

SUSE-SR:2011:005

[oss-security] 20101201 Re: CVE Request -- perl-CGI two ids, perl-CGI-Simple one id (CVE-2010-3172 already assigned for Bugzilla part)

43033

43068

43165

http://www.bugzilla.org/security/3.2.9/

MDVSA-2011:008

ADV-2011-0106

ADV-2011-0207

ADV-2011-0212

ADV-2011-0271

https://bugzilla.mozilla.org/show_bug.cgi?id=591165

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.