Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-3494

Overview

Vulnerability Score 7.8 7.8
CVE Id CVE-2008-3494
Last Modified 10 Sep 2008 09:12:48
Published 06 Aug 2008 02:41:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-3494

Summary

8e6 R3000 Internet Filter 2.0.12.10 allows remote attackers to bypass intended restrictions via an extra HTTP Host header with additional leading text placed before the real Host header.

Vulnerable Systems

Application

  • 8e6 R3000 Internet Filter 2.0.12.10


References

XF - r3000-httprequest-security-bypass(44238)

BID - 30541

BUGTRAQ - 20080805 8e6 Technologies R3000 Internet Filter Bypass with Host Decoy

SECUNIA - 31391


Last Updated: 27 May 2016 10:48:12