Sun Multiple Java System Request Smuggling Vulnerability

Sun Multiple Java System Request Smuggling Vulnerability

Multiple Sun Java System servers are prone to an HTTP-request-smuggling attack.

This class of attack basically involves piggybacking an HTTP request inside of another HTTP request. By leveraging failures to implement the HTTP/1.1 RFC properly, this class of attack has been demonstrated to cause cache poisoning, cross-site scripting, session hijacking, and other attacks.