Vulnerability CVE-2016-5331

Vulnerability CVE-2016-5331

Published: 2016-08-07 Modified: 2016-08-08

Description:

Type:

(Improper Neutralization of CRLF Sequences ('CRLF Injection'))

CVSS Base Score	Impact Subscore	Exploitability Subscore
4.3/10	2.9/10	8.6/10

Affected software
Vmware -> Vcenter server
Vmware -> ESXI

http://packetstormsecurity.com/files/138211/VMware-vSphere-Hypervisor-ESXi-HTTP-Response-Injection.html

http://seclists.org/fulldisclosure/2016/Aug/38

http://www.securityfocus.com/archive/1/539128/100/0/threaded

http://www.securityfocus.com/bid/92324

http://www.securitytracker.com/id/1036543

http://www.securitytracker.com/id/1036544

http://www.securitytracker.com/id/1036545

http://www.vmware.com/security/advisories/VMSA-2016-0010.html