Security News -  Security Reviews -   Exploits -  Tools -  UNIX Focus -  Windows Focus
SecuriTeam™  Beyond Security®  SecuriTeam™ Home  Ask the Team  Mailing Lists  Advertising Info  Blogs  Black Box Testing  Vulnerability Assessment  Vulnerability Scanner SecuriTeam™ in Your Inbox   E-mail this article to a friend New vulnerability? New tool? Tell us	8e6 Technologies R3000 Internet Filter Bypass by Request Split 25 Jan. 2008    Summary "The 8e6 Professional Edition offers high-performance, enterprise-level filtering with the R3000 Internet Filter". The HTTP URL filtering function provided by the 8e6 Technologies R3000 Internet Filter can be bypassed by simply splitting the HTTP request line (which contains the URI) into multiple packets.   Credit: The information has been provided by nnposter.    Details Audit your web server for security holes - see what the hackers see. Sign up for a scan today - risk free! Vulnerable Systems:  * 8e6 version 2.0.05.33 Immune Systems:  * 8e6 version 2.0.11 Example: packet 1: GE packet 2: T / HTTP/1.0\r\n This weakness is present regardless whether the site block is based on the DNS name or the IP address. For circumventing blocks based solely on the DNS name it is sufficient to arrange the HTTP request so that the request line and the Host header end up in separate packets. Example: packet 1: GET / HTTP/1.0           X-SomeHeader: ...           .... packet 2: X-SomeOtherHeader: ....           Host: www.blocked.com           ... Solution: Use a filtering solution that performs an HTTP request reassembly.  Comments: Subject:   Date:  From:  Add new comment:  Subject:  Name/Nick/Email:          Chars Left:	All Sections Security News Unix focus Exploits Tools Windows focus Security Reviews  Related Articles Wonderware SuiteLink Denial of Service Vulnerability WebMod Multiple Vulnerabilities IAX2 Incomplete 3-Way Handshake (Spoofing) Multiple Vendor OpenOffice Vulnerabilities Apple Safari WebKit PCRE Handling Integer Overflow Vulnerability Cisco Network Admission Control Shared Secret Vulnerability ClamAV libclamav PeSpin Heap Overflow Vulnerability ClamAV libclamav PE WWPack Heap Overflow Vulnerability IBM Informix Pre-Authentication Stack Overflow Adobe Flash Player DeclareFunction2 Invalid Object Use Vulnerability HP OpenView NNM Buffer Overflow Websphere MQ MCAUSER Setting Bypass Vulnerability Websphere MQ Security Exit Authentication Bypass Vulnerability Xitami Web Server Multiple Vulnerabilities (Exploit) Watchguard Firebox PPTP VPN User Enumeration Vulnerability  Featured Articles Multiple Vendor rdesktop Vulnerabilities Wonderware SuiteLink Denial of Service Vulnerability PHP Multibyte Shell Command Escaping Bypass Vulnerability Akamai Download Manager Arbitrary Program Execution Vulnerability SugarCRM Community Edition Local File Disclosure Vulnerability Insufficient Argument Validation of Hooked SSDT Functions on Multiple Antivirus and Firewalls Wordpress Cookie Integrity Protection Vulnerability
	Security News - Security Reviews - Exploits - Tools - UNIX Focus - Windows Focus - Blogs - CVEs

Copyright © 1998-2008 Beyond Security® All rights reserved.
Terms of Use Site Privacy Statement.
SecuriTeam™ is a trademark of Beyond Security®