“HTTP Response Splitting” is a new application attack technique which enables various new attacks such as web cache poisoning, cross user defacement, hijacking pages with sensitive user information and an old favorite, cross-site scripting (XSS).
This attack technique, and the derived attacks from it, are relevant to most web environments and is the result of the application’s failure to reject illegal user input, in this case, input containing malicious or unexpected characters.
The HTTP response splitting vulnerability is the result of the application’s failure to reject illegal user input. Specifically, input containing malicious or unexpected CR and LF characters.
Read the full paper in PDF here