click="window.open(this.href);return false;">http://www.securityfocus.com/bid/17883Bugtraq ID: 17883
Class: Design Error
CVE: CVE-2006-0515
Remote: Yes
Local: No
Published: May 08 2006 12:00AM
Updated: May 09 2006 09:09PM
Credit: Discovered by George D. Gal <ggal@vsecurity.com>.
세부설명
========
여러 Cisco 제품들이 컨텐츠-필터링 우회 취약점을 가지고 있다.
이 취약점은 HTTP 리퀘스트 트래픽을 소프트웨어가 적절하게 처리하지 못하기 때문이다.
이 취약점은 사용자들에게 컨텐츠-필터링 우회와 감춰진 웹사이트 접근을 허용한다.
Cisco는 이 취약점을 Bug IDs CSCsc67612, CSCsc68472, 그리고 CSCsd81734로 관리하고 있다.
http://www.cisco.com/pcgi-bin/Support/Bugtool/onebug.pl?bugid=CSCsd81734
해결책
========
벤더는 이 취약점을 해결하기 위한 패치들과 함께 권고문을 발표했다.
패치들을 얻는 것에 관한 자세한 정보를 위해서는 언급된 권고문을 보기 바란다.
레퍼런스
========
Cisco PIX Firewall Product Homepage (Cisco Systems)
VSR Advisory: WebSense content filter bypass when deployed in conjunction with C (VSR Advisories <advisories@vsecurity.com>)
VSR Advisory: WebSense content filter bypass when deployed in conjunction with C (Matthew Cerha <mcerha@cisco.com>)
취약버전
========
Vulnerable: Cisco PIX/ASA 7.0.4 .3
Cisco PIX/ASA 7.0.4
Cisco PIX/ASA 7.0.1 .4
Cisco PIX/ASA 7.0
Cisco PIX Firewall 525 6.3
Cisco PIX Firewall 6.3.3 (133)
Cisco PIX Firewall 6.3.2
Cisco PIX Firewall 6.3.1
Cisco PIX Firewall 6.3 (5)
Cisco PIX Firewall 6.3 (3.109)
Cisco PIX Firewall 6.3 (3.102)
Cisco PIX Firewall 6.3 (3)
Cisco PIX Firewall 6.3 (1)
Cisco PIX Firewall 6.3
Cisco PIX Firewall 6.2.3 (110)
Cisco PIX Firewall 6.2.3
Cisco PIX Firewall 6.2.2 .111
Cisco PIX Firewall 6.2.2
Cisco PIX Firewall 6.2.1
Cisco PIX Firewall 6.2 (3.100)
Cisco PIX Firewall 6.2 (3)
Cisco PIX Firewall 6.2 (2)
Cisco PIX Firewall 6.2 (1)
Cisco PIX Firewall 6.2
Cisco PIX Firewall 6.1.5 (104)
Cisco PIX Firewall 6.1.5
Cisco PIX Firewall 6.1.4
Cisco PIX Firewall 6.1.3
Cisco PIX Firewall 6.1 (5)
Cisco PIX Firewall 6.1 (4)
Cisco PIX Firewall 6.1 (3)
Cisco PIX Firewall 6.1 (2)
Cisco PIX Firewall 6.1 (1)
Cisco PIX Firewall 6.1
+ Cisco PIX Firewall 515
+ Cisco PIX Firewall 520
Cisco PIX Firewall 6.0.4
Cisco PIX Firewall 6.0.3
Cisco PIX Firewall 6.0 (4.101)
Cisco PIX Firewall 6.0 (4)
Cisco PIX Firewall 6.0 (2)
Cisco PIX Firewall 6.0 (1)
Cisco PIX Firewall 6.0
+ Cisco PIX Firewall 515
+ Cisco PIX Firewall 520
Cisco PIX Firewall 5.3 (3)
Cisco PIX Firewall 5.3 (2)
Cisco PIX Firewall 5.3 (1.200)
Cisco PIX Firewall 5.3 (1)
Cisco PIX Firewall 5.3
+ Cisco PIX Firewall 515
+ Cisco PIX Firewall 520
Cisco PIX Firewall 5.2 (9)
Cisco PIX Firewall 5.2 (7)
Cisco PIX Firewall 5.2 (6)
Cisco PIX Firewall 5.2 (5)
Cisco PIX Firewall 5.2 (3.210)
Cisco PIX Firewall 5.2 (2)
Cisco PIX Firewall 5.2 (1)
Cisco PIX Firewall 5.2
Cisco PIX Firewall 5.1.4
Cisco PIX Firewall 5.1 (4.206)
Cisco PIX Firewall 5.1
+ Cisco PIX Firewall 515
+ Cisco PIX Firewall 520
Cisco PIX Firewall 5.0
+ Cisco PIX Firewall 515
+ Cisco PIX Firewall 520
Cisco PIX Firewall 4.4 (8)
Cisco PIX Firewall 4.4 (7.202)
Cisco PIX Firewall 4.4 (4)
Cisco PIX Firewall 4.4
Cisco PIX Firewall 4.3
Cisco PIX Firewall 4.2.2
Cisco PIX Firewall 4.2.1
Cisco PIX Firewall 4.2 (5)
Cisco PIX Firewall 4.2
Cisco PIX Firewall 4.1.6 b
Cisco PIX Firewall 4.1.6
Cisco PIX Firewall 4.0
Cisco PIX Firewall 3.1
Cisco PIX Firewall 3.0
Cisco PIX Firewall 2.7
Cisco FWSM 3.1
Cisco FWSM 2.3
Not Vulnerable: Cisco PIX/ASA 7.1(2)
Cisco PIX/ASA 7.0(5)
Cisco PIX Firewall 6.3.5 (112)
Cisco FWSM 3.1(1.7)
Cisco FWSM 2.3(4)
|
> 취약성 정보
회원정보보기
쪽지보내기