CVE-2003-1338 — MEDIUM (4.3)

Q: How severe is CVE-2003-1338?

CVE-2003-1338 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2003-1338?

Check the references section above for vendor advisories and patch information. Affected products include: Aprelium Technologies Abyss Web Server.

Vulnerability Description

CRLF injection vulnerability in Aprelium Abyss Web Server 1.1.2 and earlier allows remote attackers to inject arbitrary HTTP headers and possibly conduct HTTP Response Splitting attacks via CRLF sequences in the Location header.

CVSS Score

4.3

MEDIUM

AV:N/AC:M/Au:N/C:N/I:P/A:N

Confidentiality

NONE

Integrity

PARTIAL

Availability

NONE

Affected Products

Vendor	Product	Versions
Aprelium Technologies	Abyss Web Server	<= 1.1.2

References

FAQ

What is CVE-2003-1338?

CVE-2003-1338 is a vulnerability with a CVSS score of 4.3 (MEDIUM). CRLF injection vulnerability in Aprelium Abyss Web Server 1.1.2 and earlier allows remote attackers to inject arbitrary HTTP headers and possibly conduct HTTP Response Splitting attacks via CRLF seque...

How severe is CVE-2003-1338?

CVE-2003-1338 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2003-1338?

Check the references section above for vendor advisories and patch information. Affected products include: Aprelium Technologies Abyss Web Server.