|
|
|
|
| |
I-Gear for Microsoft Proxy is an award-winning, server-based Internet Content Management solution that allows organizations to control and focus Internet usage, for increased productivity and decreased liability.
The product contains a vulnerability that allows users traveling through the proxy to render I-Gear's activity report feature unusable. |
| |
Credit:
The information has been provided by Dmitry Andrievsky.
|
| |
Vulnerable systems:
I-Gear 3.5.6
I-Gear's activity report can be made inoperable by sending a large URL (over 255 characters) via the proxy product. This URL will generate an invalid entry disabling access to the activity report.
Solution:
Symantec is working on a new release of software that will solve the problem as soon as possible.
Temporary Solution:
This is only a partial solution, and you can not run it on you current log file (since it is being used by I-Gear), but it still provides a temporary solution for administrators that are unable to access their activity report.
1. Download a Windows version of the 'grep' utility (e.g. Tim Charron's http://www.interlog.com/~tcharron/grep.html)
2. Make this batch file (fixlog.cmd):
grep -v -E .{300,} %1 > templog
move /y templog %1
3. Run the batch file (fixlog urlog20001009)
This will remove any log entries larger then 300 characters, and you can continue to generate reports.
|
|
|
|
|
|
|
