CVE-2008-3906 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2008-3906 Interim 1 3 2021-06-09T08:46:08Z current 2021-05-30T12:43:45Z 2021-06-09T08:46:08Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2008-3906 CRLF injection vulnerability in Sys.Web in Mono 2.0 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in the query string. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://www.suse.com/support/security/rating/ SUSE Security Ratings CRLF injection vulnerability in Sys.Web in Mono 2.0 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in the query string. CVE-2008-3906 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:P/A:N