CVE-2007-1224

Name of the Vulnerable Software and Affected Versions Grok Developments NetProxy version 4.03

Description The issue allows remote attackers to bypass URL filtering. This can be achieved by sending a request that omits "http://" from the URL and specifies the destination port, such as :80.

Recommendations For Grok Developments NetProxy version 4.03, consider updating the URL filtering rules to handle requests without the "http://" prefix and those that specify the destination port explicitly. As a temporary workaround, restrict access to sensitive URLs by implementing additional filtering mechanisms that check for the presence of "http://" and the destination port in incoming requests.