First published: Thu Aug 23 2012(Updated: )
The Filtering Service in Websense Enterprise 5.2 through 6.3 does not consider the IP address during URL categorization, which makes it easier for remote attackers to bypass filtering via an HTTP request, as demonstrated by a request to a compromised server associated with a specific IP address.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Websense Enterprise | =6.3 | |
Websense Enterprise | =5.2 | |
Websense Enterprise | =6.2 | |
Websense Enterprise | =6.1 | |
Websense Enterprise | =5.5 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.