CRLF injection vulnerability in the cookie method (lib/Dancer/Cookie.pm) in Dancer before 1.3114 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a cookie name, a different vulnerability than CVE-2012-5526.
Metrics
Affected Vendors & Products
References
History
No history.

Status: PUBLISHED
Assigner: redhat
Published: 2014-05-30T14:00:00
Updated: 2024-08-06T21:14:15.615Z
Reserved: 2012-10-24T00:00:00
Link: CVE-2012-5572

No data.

Status : Deferred
Published: 2014-05-30T14:55:06.287
Modified: 2025-04-12T10:46:40.837
Link: CVE-2012-5572

No data.