CVE-2015-2054

CRLF injection vulnerability in export.cfg in the web-based administrative console for Sierra Wireless AirCard 760S, 762S, and 763S allows remote attackers to inject arbitrary headers via CRLF sequences in the save parameter.

Date published : 2015-02-23

http://www.securityfocus.com/bid/74875

http://seclists.org/fulldisclosure/2015/Jan/58