Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2016-4975

CWE-93 CWE-1139 documents9 sources

Severity

6.1MEDIUM

EPSS

73.3%

top 1.21%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Apache Software Foundation Apache Http Server Apache Http Server

Timeline

PublishedAug 14

Latest updateMay 13

Description

Possible CRLF injection allowing HTTP response splitting attacks for sites which use mod_userdir. This issue was mitigated by changes made in 2.4.25 and 2.2.32 which prohibit CR or LF injection into the "Location" or other outbound header key or value. Fixed in Apache HTTP Server 2.4.25 (Affected 2.4.1-2.4.23). Fixed in Apache HTTP Server 2.2.32 (Affected 2.2.0-2.2.31).

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:NExploitability: 2.8 | Impact: 2.7

Affected Packages3 packages

▶NVDapache/http_server41 versions+40

▶CVEListV5apache_software_foundation/apache_http_serverFixed in Apache HTTP Server 2.2.32 (Affected 2.2.0-2.2.31), Fixed in Apache HTTP Server 2.4.25 (Affected 2.4.1-2.4.23)+1

▶Debianapache2< 2.4.25-1+3

🔴Vulnerability Details

GHSA

GHSA-crcg-r773-w4rv: Possible CRLF injection allowing HTTP response splitting attacks for sites which use mod_userdir↗2022-05-13

▶

CVEList

mod_userdir CRLF injection↗2018-08-14

▶

OSV

CVE-2016-4975: Possible CRLF injection allowing HTTP response splitting attacks for sites which use mod_userdir↗2018-08-14

▶

💥Exploits & PoCs

Nuclei

Apache mod_userdir CRLF injection

▶

📋Vendor Advisories

Red Hat

httpd: CRLF injection allowing HTTP response splitting attacks for sites which use mod_userdir↗2018-08-14

▶

Debian

CVE-2016-4975: apache2 - Possible CRLF injection allowing HTTP response splitting attacks for sites which...↗2016

▶

💬Community

HackerOne

mod_userdir CRLF injection (CVE-2016-4975)↗2018-10-02

▶

Bugzilla

CVE-2016-4975 httpd: CRLF injection allowing HTTP response splitting attacks for sites which use mod_userdir↗2016-09-14

▶