Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-0452

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2002-0452
Last Modified 05 Sep 2008 04:28:03
Published 12 Aug 2002 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-0452

Summary

Foundry Networks ServerIron switches do not decode URIs when applying "url-map" rules, which could make it easier for attackers to cause the switch to forward traffic to a different server than intended and exploit vulnerabilities that would otherwise be inaccessible.

Vulnerable Systems

Application

  • Foundrynet Serveriron 400

  • Foundrynet Serveriron 5.1.10t12

  • Foundrynet Serveriron 6.0

  • Foundrynet Serveriron 7.1.09

  • Foundrynet Serveriron 800

  • Foundrynet Serveriron Xl

  • Foundrynet Serveriron Xl G


References

XF - foundry-serveriron-reveal-source(8459)

BID - 4286

BUGTRAQ - 20020313 Foundry Networks ServerIron don't decode URIs


Last Updated: 27 May 2016 10:36:54