Bug ID 505497: HP WebInspect - Response splitting

Last Modified: Apr 10, 2019

Bug Tracker

Affected Product:  See more info
BIG-IP ASM(all modules)

Known Affected Versions:
11.5.1, 11.5.1 HF1, 11.5.1 HF10, 11.5.1 HF11, 11.5.1 HF2, 11.5.1 HF3, 11.5.1 HF4, 11.5.1 HF5, 11.5.1 HF6, 11.5.1 HF7, 11.5.1 HF8, 11.5.1 HF9, 11.5.2, 11.5.2 HF1, 11.5.3, 11.5.3 HF1, 11.5.3 HF2, 11.5.4, 11.5.4 HF1, 11.5.4 HF2, 11.5.4 HF3, 11.5.4 HF4, 11.5.5, 11.5.6, 11.5.7, 11.5.8, 11.5.9

Fixed In:
12.1.0

Opened: Feb 08, 2015
Severity: 3-Major

Symptoms

ASM does not mitigate the HP WebInspect Response Splitting vulnerability properly.

Impact

Vulnerability marked as mitigated while actually is not.

Conditions

Vulnerability is found in the site and reported in WebInspect.

Workaround

None

Fix Information

Resolution for vulnerability IDs 3375 and 5279 has been corrected.

Behavior Change