VYPR
Medium severity6.1NVD Advisory· Published Jun 19, 2016· Updated Jun 17, 2026

CVE-2016-1224

CVE-2016-1224

Description

CRLF injection vulnerability in Trend Micro Worry-Free Business Security Service 5.x and Worry-Free Business Security 9.0 allows remote attackers to inject arbitrary HTTP headers and conduct cross-site scripting (XSS) attacks via unspecified vectors.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4
  • cpe:2.3:a:trendmicro:worry-free_business_security:9.0:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:trendmicro:worry-free_business_security:9.0:*:*:*:*:*:*:*
    • (no CPE)range: 9.0
  • cpe:2.3:a:trendmicro:worry-free_business_security_services:5.0:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:trendmicro:worry-free_business_security_services:5.0:*:*:*:*:*:*:*
    • (no CPE)range: 5.x

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.