Debian: 2587-1: libcgi-pm-perl: HTTP header injection
Dec12
on December 12, 2012
at 6:10 pm
Posted In: Uncategorized
(Dec 11) It was discovered that the CGI module for Perl does not filter LF characters in the Set-Cookie and P3P headers, potentially allowing attackers to inject HTTP headers. [More…]
Comment