PT-2006-1579 · Websense+1 · Websense+3
Published
2006-05-09
·
Updated
2024-07-02
·
CVE-2006-0515
CVSS v2.0
7.5
High
| Vector | AV:N/AC:L/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
Cisco PIX/ASA versions 7.1.x before 7.1(2)
Cisco PIX/ASA versions 7.0.x before 7.0(5)
Cisco PIX version 6.3.x before 6.3.5(112)
Cisco FWSM versions 2.3.x before 2.3(4)
Cisco FWSM versions 3.x before 3.1(7)
Description
The issue allows remote attackers to bypass HTTP access restrictions by splitting the GET method of an HTTP request into multiple packets. This prevents the request from being sent to Websense for inspection.
Recommendations
For Cisco PIX/ASA versions 7.1.x before 7.1(2), update to version 7.1(2) or later.
For Cisco PIX/ASA versions 7.0.x before 7.0(5), update to version 7.0(5) or later.
For Cisco PIX version 6.3.x before 6.3.5(112), update to version 6.3.5(112) or later.
For Cisco FWSM versions 2.3.x before 2.3(4), update to version 2.3(4) or later.
For Cisco FWSM versions 3.x before 3.1(7), update to version 3.1(7) or later.
Exploit
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Cisco Fwsm
Cisco Pix
Cisco Pix/Asa
Websense