Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-7161

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-7161
Last Modified 09 Sep 2009 12:00:00
Published 04 Sep 2009 06:30:01
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-7161

Summary

Fortinet FortiGuard Fortinet FortiGate-1000 3.00 build 040075,070111 allows remote attackers to bypass URL filtering via fragmented GET or POST requests that use HTTP/1.0 without the Host header. NOTE: this issue might be related to CVE-2005-3058.

Vulnerable Systems


References

XF - fortinet-url-security-bypass(39684)

BID - 27276

BUGTRAQ - 20080104 Re: FortiGuard: URL Filtering Application Bypass Vulnerability

BUGTRAQ - 20080103 FortiGuard: URL Filtering Application Bypass Vulnerability


Last Updated: 27 May 2016 10:49:29