High severity8.1NVD Advisory· Published Mar 14, 2017· Updated May 13, 2026

CVE-2016-8024

Description

Improper neutralization of CRLF sequences in HTTP headers vulnerability in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and earlier) allows remote unauthenticated attacker to obtain sensitive information via the server HTTP response spoofing.

Affected products

McAfee/Virusscan Enterprise
cpe:2.3:a:mcafee:virusscan_enterprise:*:*:*:*:*:linux:*:*
Range: <=2.0.3
Intel/VirusScan Enterprise Linux (VSEL)v5
Range: 2.0.3 (and earlier)

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

kc.mcafee.com/corporate/indexnvdVendor Advisory
www.securityfocus.com/bid/94823nvd
www.securitytracker.com/id/1037433nvd
www.exploit-db.com/exploits/40911/nvd

News mentions

No linked articles in our index yet.

cvss	0.526
epss	0.007
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000