← CVECheck
HomeVulnerabilities

CVE-2002-1405 — MEDIUM severity vulnerability (CRLF injection vulnerability in Lynx 2.8.4 and earlier allow)

CRLF injection vulnerability in Lynx 2.8.4 and earlier allows remote attackers to inject false HTTP headers into an HTTP request that is provided on the command line, via a URL containing encoded carriage return, line feed, and other whitespace characters.

CVE IDCVE-2002-1405
SeverityMEDIUM
CVSS score5.0
CVSS vectorAV:N/AC:L/Au:N/C:N/I:P/A:N
CWENVD-CWE-Other
StatusModified
Published2003-02-19
Last modified2026-04-16
DescriptionCRLF injection vulnerability in Lynx 2.8.4 and earlier allows remote attackers to inject false HTTP headers into an HTTP request that is provided on the command line, via a URL containing encoded carriage return, line feed, and other whitespace characters.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →