Required CVE Record Information
Description
The HTTP proxy for Symantec Enterprise Firewall (SEF) 7.0 allows proxy users to bypass pattern matching for blocked URLs via requests that are URL-encoded with escapes, Unicode, or UTF-8.
References 5 Total
- marc.info: 20030326 Corsaire Security Advisory - Symantec Enterprise Firewall (SEF) H TTP URL pattern evasion issue mailing-list
- archives.neohapsis.com: 20030326 Corsaire Security Advisory - Symantec Enterprise Firewall (SEF) H TTP URL pattern evasion issue mailing-list
- marc.info: 20030326 Corsaire Security Advisory - Symantec Enterprise Firewall (SEF) H TTP URL pattern evasion issue mailing-list
- http://service1.symantec.com/SUPPORT/ent-gate.nsf/docid/2003032507434754
- securityfocus.com: 7196 vdb-entry
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 5 Total
- marc.info: 20030326 Corsaire Security Advisory - Symantec Enterprise Firewall (SEF) H TTP URL pattern evasion issue mailing-listx_transferred
- archives.neohapsis.com: 20030326 Corsaire Security Advisory - Symantec Enterprise Firewall (SEF) H TTP URL pattern evasion issue mailing-listx_transferred
- marc.info: 20030326 Corsaire Security Advisory - Symantec Enterprise Firewall (SEF) H TTP URL pattern evasion issue mailing-listx_transferred
- http://service1.symantec.com/SUPPORT/ent-gate.nsf/docid/2003032507434754 x_transferred
- securityfocus.com: 7196 vdb-entryx_transferred