CRLF injection vulnerability in Mortbay Jetty before 6.1.6rc0 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors.

More... (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-5615)