CVE-2008-1368

Severity Score

4.3

*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

CRLF injection vulnerability in Microsoft Internet Explorer 5 and 6 allows remote attackers to execute arbitrary FTP commands via an ftp:// URL that contains a URL-encoded CRLF (%0D%0A) before the FTP command, which causes the commands to be inserted into an authenticated FTP connection established earlier in the same browser session, as demonstrated using a DELE command, a variant or possibly a regression of CVE-2004-1166. NOTE: a trailing "//" can force Internet Explorer to try to reuse an existing authenticated connection.

Vulnerabilidad de inyección CRLF en Microsoft Internet Explorer 5 y 6 permite a atacantes remotos ejecutar comandos FTP de su elección a través de una URL ftp:// codificada con los caracteres (%0D%0A) previa al comando FTP, que causa que los comandos sean insertados en una conexión FTP autenticada establecida previamente en la misma sesión de navegación, como se ha demostrado usando el comando DELE, una variante o posible regresión de la CVE-2004-1166. NOTA: un resto como"//" puede forzar que Internet Explorer intente reutilizar una conexión autenticada existente.

*Credits: N/A

CVSS Scores

NISTv2 4.3

Attack Vector

Network

Attack Complexity

Medium

Authentication

None

Confidentiality

None

Integrity

Partial

Availability

None

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2008-03-17 CVE Reserved
2008-03-18 CVE Published
2024-08-07 CVE Updated
2024-08-07 First Exploit
2024-11-05 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date

CWE

CWE-94: Improper Control of Generation of Code ('Code Injection')

CAPEC

References (6)

URL	Tag	Source
http://securityreason.com/securityalert/3750	Third Party Advisory
http://www.rapid7.com/advisories/R7-0032.jsp	X_refsource_misc
http://www.securityfocus.com/archive/1/489500/100/0/threaded	Mailing List
http://www.vupen.com/english/advisories/2008/0870	Vdb Entry

URL	Date	SRC
http://www.securityfocus.com/bid/28208	2024-08-07

URL	Date	SRC

URL	Date	SRC
http://secunia.com/advisories/29346	2021-07-23

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Microsoft Search vendor "Microsoft"		Internet Explorer Search vendor "Microsoft" for product "Internet Explorer"				5 Search vendor "Microsoft" for product "Internet Explorer" and version "5"		-		Affected
Microsoft Search vendor "Microsoft"		Internet Explorer Search vendor "Microsoft" for product "Internet Explorer"				6 Search vendor "Microsoft" for product "Internet Explorer" and version "6"		-		Affected