CVE-2008-0786 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2008-0786 Interim 1 5 2023-12-09T02:10:58Z current 2021-05-30T12:41:45Z 2023-12-09T02:10:58Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2008-0786 CRLF injection vulnerability in Cacti 0.8.7 before 0.8.7b and 0.8.6 before 0.8.6k, when running on older PHP interpreters, allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/LMTVE4EZQNOFAC75PBBXSBZFINGTVNEL/#LMTVE4EZQNOFAC75PBBXSBZFINGTVNEL E-Mail link for SUSE-SR:2008:005 https://www.suse.com/support/security/rating/ SUSE Security Ratings CRLF injection vulnerability in Cacti 0.8.7 before 0.8.7b and 0.8.6 before 0.8.6k, when running on older PHP interpreters, allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors. CVE-2008-0786 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:P/A:N