CGI abuses : Wordpress Wp-login.PHP HTTP Response Splitting

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.52745

Categoría: CGI abuses

Título: Wordpress Wp-login.PHP HTTP Response Splitting

Resumen: NOSUMMARY

Descripción: Description:

The remote version of Wordpress, according to its version
number, is vulnerable to a response splitting vulnerability
that allows attackers to manipulate how GET requests are
handled. This in turn allows them to misrepresent how content
is served or interpreted.

Versions prior to 1.2.1 are known to be vulnerable.

Solution : Upgrade to 1.2.1 or later.

Risk factor : Medium

CVSS Score:
5.0

Referencia Cruzada: BugTraq ID: 11348
Common Vulnerability Exposure (CVE) ID: CVE-2004-1584
http://www.securityfocus.com/bid/11348
Bugtraq: 20041006 HTTP Response Splitting Vulnerability in Wordpress 1.2 (Google Search)
http://marc.info/?l=bugtraq&m=109716327724041&w=2
http://www.gentoo.org/security/en/glsa/glsa-200410-12.xml
http://secunia.com/advisories/12773
XForce ISS Database: wordpress-response-splitting(17649)
https://exchange.xforce.ibmcloud.com/vulnerabilities/17649

Copyright Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.52745
Categoría:	CGI abuses
Título:	Wordpress Wp-login.PHP HTTP Response Splitting
Resumen:	NOSUMMARY
Descripción:	Description: The remote version of Wordpress, according to its version number, is vulnerable to a response splitting vulnerability that allows attackers to manipulate how GET requests are handled. This in turn allows them to misrepresent how content is served or interpreted. Versions prior to 1.2.1 are known to be vulnerable. Solution : Upgrade to 1.2.1 or later. Risk factor : Medium CVSS Score: 5.0
Referencia Cruzada:	BugTraq ID: 11348 Common Vulnerability Exposure (CVE) ID: CVE-2004-1584 http://www.securityfocus.com/bid/11348 Bugtraq: 20041006 HTTP Response Splitting Vulnerability in Wordpress 1.2 (Google Search) http://marc.info/?l=bugtraq&m=109716327724041&w=2 http://www.gentoo.org/security/en/glsa/glsa-200410-12.xml http://secunia.com/advisories/12773 XForce ISS Database: wordpress-response-splitting(17649) https://exchange.xforce.ibmcloud.com/vulnerabilities/17649
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com