CRLF injection vulnerability in Pebble before 2.6.4 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors.Referenceshttp://jvn.jp/en/jp/JVN39563771/index.htmlhttp://secunia.com/advisories/51102http://jvndb.jvn.jp/jvndb/JVNDB-2012-000099
