CVE-2013-2582

Name of the Vulnerable Software and Affected Versions Open-Xchange AppSuite and Server versions prior to 6.22.0 rev15 Open-Xchange AppSuite and Server versions 6.22.1 prior to rev17 Open-Xchange AppSuite and Server versions 7.0.1 prior to rev6 Open-Xchange AppSuite and Server versions 7.0.2 prior to rev7

Description The issue is related to a CRLF injection vulnerability in the redirect servlet. This vulnerability allows remote attackers to inject arbitrary HTTP headers and conduct open redirect attacks by leveraging improper sanitization of whitespace characters.

Recommendations For Open-Xchange AppSuite and Server versions prior to 6.22.0 rev15, update to version 6.22.0 rev15 or later. For Open-Xchange AppSuite and Server versions 6.22.1 prior to rev17, update to version 6.22.1 rev17 or later. For Open-Xchange AppSuite and Server versions 7.0.1 prior to rev6, update to version 7.0.1 rev6 or later. For Open-Xchange AppSuite and Server versions 7.0.2 prior to rev7, update to version 7.0.2 rev7 or later.