IBM Corporation Affected

Updated:  July 25, 2005

Status

Affected

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

Lotus Domino is affected. IBM has published details, fixes, and workarounds in the "Lotus Domino allows HTTP header injection" note. The issue is addressed in Domino 6.5.4 and 6.0.5.

Squid Affected

Updated:  July 25, 2005

Status

Affected

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

Team Squid has created a patch for the current release version of Squid available online here. This flaw has been patched in Squid 2.5.STABLE8.