Vulnerability CVE-2017-2666

Vulnerability CVE-2017-2666

Published: 2018-07-27

Description:

Type:

(Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling'))

CVSS Base Score	Impact Subscore	Exploitability Subscore
6.4/10	4.9/10	10/10

Affected software
Redhat -> Jboss enterprise application platform
Redhat -> Undertow
Debian -> Debian linux

http://rhn.redhat.com/errata/RHSA-2017-1409.html

http://www.securityfocus.com/bid/98966

https://access.redhat.com/errata/RHSA-2017:1410

https://access.redhat.com/errata/RHSA-2017:1411

https://access.redhat.com/errata/RHSA-2017:1412

https://access.redhat.com/errata/RHSA-2017:3454

https://access.redhat.com/errata/RHSA-2017:3455

https://access.redhat.com/errata/RHSA-2017:3456

https://access.redhat.com/errata/RHSA-2017:3458

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-2666

https://www.debian.org/security/2017/dsa-3906