TROYANOSYVIRUS
Voltar para CVEs

CVE-2006-0515

N/A

Descricao

Cisco PIX/ASA 7.1.x before 7.1(2) and 7.0.x before 7.0(5), PIX 6.3.x before 6.3.5(112), and FWSM 2.3.x before 2.3(4) and 3.x before 3.1(7), when used with Websense/N2H2, allows remote attackers to bypass HTTP access restrictions by splitting the GET method of an HTTP request into multiple packets, which prevents the request from being sent to Websense for inspection, aka bugs CSCsc67612, CSCsc68472, and CSCsd81734.

Detalhes CVE

Pontuacao CVSS v3.1N/A
Publicado5/9/2006
Ultima modificacao4/16/2026
Fontenvd
Avistamentos honeypot0

Produtos afetados

cisco:adaptive_security_appliance_softwarecisco:firewall_services_modulecisco:pix_firewallcisco:pix_firewall_software

Referencias

http://lists.grok.org.uk/pipermail/full-disclosure/2006-May/045899.html(cve@mitre.org)
http://secunia.com/advisories/20044(cve@mitre.org)
http://securitytracker.com/id?1016039(cve@mitre.org)
http://securitytracker.com/id?1016040(cve@mitre.org)
http://www.cisco.com/en/US/products/sw/netmgtsw/ps2032/tsd_products_security_response09186a00806824ec.html(cve@mitre.org)
http://www.osvdb.org/25453(cve@mitre.org)
http://www.securityfocus.com/archive/1/433270/100/0/threaded(cve@mitre.org)
http://www.securityfocus.com/bid/17883(cve@mitre.org)
http://www.vsecurity.com/bulletins/advisories/2006/cisco-websense-bypass.txt(cve@mitre.org)
http://www.vupen.com/english/advisories/2006/1738(cve@mitre.org)
https://exchange.xforce.ibmcloud.com/vulnerabilities/26308(cve@mitre.org)
http://lists.grok.org.uk/pipermail/full-disclosure/2006-May/045899.html(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/20044(af854a3a-2127-422b-91ae-364da2661108)
http://securitytracker.com/id?1016039(af854a3a-2127-422b-91ae-364da2661108)
http://securitytracker.com/id?1016040(af854a3a-2127-422b-91ae-364da2661108)
http://www.cisco.com/en/US/products/sw/netmgtsw/ps2032/tsd_products_security_response09186a00806824ec.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.osvdb.org/25453(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/archive/1/433270/100/0/threaded(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/17883(af854a3a-2127-422b-91ae-364da2661108)
http://www.vsecurity.com/bulletins/advisories/2006/cisco-websense-bypass.txt(af854a3a-2127-422b-91ae-364da2661108)
http://www.vupen.com/english/advisories/2006/1738(af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/26308(af854a3a-2127-422b-91ae-364da2661108)

Correlacoes IOC

Sem correlacoes registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.