• info
• discussion
• exploit
• solution
• references

SnipSnap HTTP Response Splitting Vulnerability

Solution:
Gentoo has released updates that may be applied with the following commands:
emerge sync
emerge -pv ">=dev-java/snipsnap-bin-1.0_beta1"
emerge ">=dev-java/snipsnap-bin-1.0beta1"

SnipSnap 1.0b1 is available to address this issue:


SnipSnap SnipSnap 0.5.2 a

• SnipSnap SnipSnap 1.0b1
  http://snipsnap.org/space/snipsnap-DOWNLOAD