Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2008-7257

CWE-20Improper Input Validation6 documents6 sources
Severity
4.3MEDIUM
EPSS
27.4%
top 3.59%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Cisco ASA 5580
Timeline
PublishedJun 29
Latest updateMay 14

Description

CRLF injection vulnerability in +webvpn+/index.html in WebVPN on Cisco Adaptive Security Appliances (ASA) 5580 series devices with software before 8.1(2) allows remote attackers to inject arbitrary HTTP headers as demonstrated by a redirect attack involving a %0d%0aLocation%3a sequence in a URI, or conduct HTTP response splitting attacks via unspecified vectors, aka Bug ID CSCsr09163.

CVSS vector

AV:N/AC:M/C:N/I:P/A:NExploitability: 8.6 | Impact: 2.9

Affected Packages1 packages

NVDcisco/asa_55808.1\(1\)

🔴Vulnerability Details

2
GHSA
GHSA-q234-9925-w6jp: CRLF injection vulnerability in +webvpn+/index2022-05-14
CVEList
CVE-2008-7257: CRLF injection vulnerability in +webvpn+/index2010-06-29

💥Exploits & PoCs

1
Exploit-DB
Cisco Adaptive Security Response - HTTP Response Splitting2010-06-25

🔍Detection Rules

1
Suricata
ET WEB_SERVER Possible Cisco PIX/ASA HTTP Web Interface HTTP Response Splitting Attempt2010-07-30

📋Vendor Advisories

1
Cisco
Cisco ASA Software HTTP Response Splitting Vulnerability2010-06-25
CVE-2008-7257 (MEDIUM CVSS 4.3) | CRLF injection vulnerability in +we | cvebase.io