Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-1594

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2009-1594
Last Modified 30 Aug 2010 12:00:00
Published 21 May 2009 10:30:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2009-1594

Summary

Armorlogic Profense Web Application Firewall before 2.2.22, and 2.4.x before 2.4.4, does not properly implement the "positive model," which allows remote attackers to bypass certain protection mechanisms via a %0A (encoded newline), as demonstrated by a %0A in a cross-site scripting (XSS) attack URL.

Vulnerable Systems

Application

  • Armorlogic Profense Web Application Firewall 2.2.21

  • Armorlogic Profense Web Application Firewall 2.4


References

XF - profense-whitelist-security-bypass(50662)

MLIST - [websecurity] 20090519 [WEB SECURITY] Trustwave's SpiderLabs Security Advisory TWSL2009-001 and EnableSecurity Advisory ES-20090500

BID - 35053

BUGTRAQ - 20090520 Armorlogic Profense Web Application Firewall 2.4 multiple vulnerabilities.

MISC - http://resources.enablesecurity.com/advisories/ES-20090500-profense.txt


Last Updated: 27 May 2016 10:50:36