httprint 202.0 - HTTP Response Server Field Arbitrary Script Injection

Author: Mariano Nunez Di Croce
type: remote
platform: multiple
port: 
date_added: 2005-12-22  
date_updated: 2013-07-21  
verified: 1  
codes: CVE-2005-4502;OSVDB-21916  
tags:   
aliases:   
screenshot_url:   
application_url:   

raw file: 26966.txt  

source: https://www.securityfocus.com/bid/16031/info

httprint is prone to multiple remote vulnerabilities.

The first issue may allow remote attackers to execute arbitrary HTML and script code in a user's browser.

The second issue may allow remote attackers to crash an instance of the application.

httprint version 202 is vulnerable to these issues.

SecServerSignature "Microsoft-IIS/5.0<script>alert('test')</script>"