Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-1465

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2001-1465
Last Modified 05 Sep 2008 04:26:37
Published 26 Feb 2002 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2001-1465

Summary

SurfControl SuperScout only filters packets containing both an HTTP GET request and a Host header, which allows local users to bypass filtering by fragmenting packets so that no packet contains both data elements.

Vulnerable Systems

Application

  • Surfcontrol Superscout Web Filter


References

CERT-VN - VU#139315

SECTRACK - 1001801


Last Updated: 27 May 2016 10:36:40