Xerver HTTP Response Splitting
Medium Nessus Plugin ID 42896
SynopsisThe remote web server has an HTTP response splitting vulnerability.
DescriptionThe version of Xerver running on the remote host has an HTTP response splitting vulnerability due to its failure to sanitize specially encoded carriage return and newline characters. A remote attacker could exploit this by tricking a user into requesting a maliciously crafted URL, resulting in the injection of HTTP headers, HTML, or script code.
SolutionThere is no known solution at this time.