Security in Context: The BeyondTrust Blog

Welcome to the Zeroday Tracker: Your Vulnerability Watchlist

Get critical updates on the latest zeroday threats, including impact, mitigation and protection information - only from BeyondTrust.

Cisco Web Security Appliance HTTP Header Redirection Weakness

Disclosed April 1, 2014    Zeroday : 516 days

Vulnerability Description:

Cisco Web Security Appliance is susceptible to CRLF injection, which allows an attacker to then inject arbitrary HTTP headers, which then can be leveraged to redirect targets to malicious content.



Vulnerable Software/Devices:

Web Security Appliance (WSA) 7.7 and earlier

Vulnerability Severity:


Exploit Availability:

No Exploit Available

Exploit Impact:

HTTP Redirection
By injecting HTTP headers via CRLF injection attacks, an attacker may redirect users to malicious websites. These malicious websites may host exploit kits, or try to steal sensitive information by spoofing popular websites.

BeyondTrust Prevention and Detection:

BeyondTrust's Retina® Network Security Scanner scans devices to detect for this vulnerability.

  • 33542 - Cisco Web Security Appliance (WSA) HTTP Header Weakness (Zero-Day)


There are no mitigations available.