CVE-2010-1576

Name of the Vulnerable Software and Affected Versions Cisco Content Services Switch (CSS) 11500 versions prior to 8.20.4.02 Cisco Application Control Engine (ACE) 4710 versions prior to A2(3.0)

Description The issue arises from improper handling of line feed (LF), carriage return (CR), and LFCR as alternatives to the standard CRLF sequence between HTTP headers. This allows remote attackers to bypass intended header insertions or conduct HTTP request smuggling attacks via crafted header data. For example, using LF characters before ClientCert-Subject and ClientCert-Subject-CN headers.

Recommendations For Cisco Content Services Switch (CSS) 11500 versions prior to 8.20.4.02, update to version 8.20.4.02 or later. For Cisco Application Control Engine (ACE) 4710 versions prior to A2(3.0), update to version A2(3.0) or later. As a temporary workaround, consider restricting the use of LF, CR, and LFCR characters in HTTP headers to minimize the risk of exploitation.