CVE-2008-0786
Published Feb 14, 2008
Last updated 6 years ago
Overview
- Description
- CRLF injection vulnerability in Cacti 0.8.7 before 0.8.7b and 0.8.6 before 0.8.6k, when running on older PHP interpreters, allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors.
- Source
- cve@mitre.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 4.3
- Impact score
- 2.9
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:N/I:P/A:N
Weaknesses
- nvd@nist.gov
- CWE-94
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:cacti:cacti:0.6.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B4611FB4-7B8D-4DCA-9BFC-87585E16129B"
},
{
"criteria": "cpe:2.3:a:cacti:cacti:0.8:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B44E0187-3577-4770-8D76-10F64F6400B3"
},
{
"criteria": "cpe:2.3:a:cacti:cacti:0.8.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D3E6282B-B403-45AD-B1EC-82257EEA1A43"
},
{
"criteria": "cpe:2.3:a:cacti:cacti:0.8.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0936E4B2-D89C-44B3-9082-77FA369BA280"
},
{
"criteria": "cpe:2.3:a:cacti:cacti:0.8.2a:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A1257552-9117-45EE-B77C-00879E1FC67B"
},
{
"criteria": "cpe:2.3:a:cacti:cacti:0.8.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "BA380DC2-2392-413E-AC7A-F8B854EA3108"
},
{
"criteria": "cpe:2.3:a:cacti:cacti:0.8.3a:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B530A944-0A71-4F88-AAE6-3844364FB098"
},
{
"criteria": "cpe:2.3:a:cacti:cacti:0.8.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "62C554AE-AE7A-48B1-A1FF-E8E7691EA344"
},
{
"criteria": "cpe:2.3:a:cacti:cacti:0.8.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "25541421-4A87-43BF-86D7-E1377CE3C859"
},
{
"criteria": "cpe:2.3:a:cacti:cacti:0.8.5a:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "301E2B13-D410-4B26-9A47-F90343F47C18"
},
{
"criteria": "cpe:2.3:a:cacti:cacti:0.8.6c:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "EE910AB1-7D04-4743-9963-BBA191EE4078"
},
{
"criteria": "cpe:2.3:a:cacti:cacti:0.8.6f:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DB41A3C5-D03A-4B1F-B841-A9F5021A59F0"
},
{
"criteria": "cpe:2.3:a:cacti:cacti:0.8.6i:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8D62D429-7BDE-47DE-B466-0732DAC3F70E"
},
{
"criteria": "cpe:2.3:a:cacti:cacti:0.8.6j:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6893355E-2F64-416D-9AED-898E6D1123F8"
},
{
"criteria": "cpe:2.3:a:cacti:cacti:0.8.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "191A8F3B-EDFA-47AA-B7B1-95B4C05AFD7A"
},
{
"criteria": "cpe:2.3:a:cacti:cacti:0.8.7a:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7A8C1715-DCA1-4C83-B817-9366172CFC1D"
}
],
"operator": "OR"
}
]
}
]