QwikSec

Security Database

CVE

CWE

Training

CVE-2010-5144

Published: Aug 23, 2012

Modified: Sep 16, 2024

PUBLISHED

Description

The ISAPI Filter plug-in in Websense Enterprise, Websense Web Security, and Websense Web Filter 6.3.3 and earlier, when used in conjunction with a Microsoft ISA or Microsoft Forefront TMG server, allows remote attackers to bypass intended filtering and monitoring activities for web traffic via an HTTP Via header.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

20100529 Websense Enterprise 6.3.3 Policy Bypass

mailing-list

x_refsource_FULLDISC

http://www.websense.com/support/article/t-kbarticle/Web-Security-Vulnerability-Microsoft-ISA-Server-Integrations

x_refsource_CONFIRM

http://mrhinkydink.blogspot.com/2010/05/websense-633-via-bypass.html

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.