http://blogs.msdn.com/b/esiu/archive/2007/09/22/http-header-injection-vulnerabilities.aspxhttp://stackoverflow.com/questions/1123138/how-does-header-injection-work