|
|
CVE Reference: CVE-2006-0515 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2006-0515 |
|
|
Description: Cisco PIX/ASA 7.1.x before 7.1(2) and 7.0.x before 7.0(5), PIX 6.3.x before 6.3.5(112), and FWSM 2.3.x before 2.3(4) and 3.x before 3.1(7), when used with Websense/N2H2, allows remote attackers to bypass HTTP access restrictions by splitting the GET method of an HTTP request into multiple packets, which prevents the request from being sent to Websense for inspection, aka bugs CSCsc67612, CSCsc68472, and CSCsd81734. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/26308 ST 1016039 1016040 SAID Secunia Advisory: SA20044 OSVDB 25453 MISC http://www.vsecurity.com/bulletins/advisories/2006/cisco-websense-bypass.txt FULLDISC http://lists.grok.org.uk/pipermail/full-disclosure/2006-May/045899.html CISCO http://www.cisco.com/en/US/products/sw/netmgtsw/ps2032/tsd_products_security_response09186a00806824ec.html BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/433270/100/0/threaded BID 17883 |
|
| Return to the previous page. |
