Vulnerabilities > CVE-2006-2035 - Local Security vulnerability in Websense

CVSS 3.7 - LOW

Attack vector

LOCAL

Attack complexity

HIGH

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

local

high complexity

websense

NVD

Published: 2006-04-26

Updated: 2018-10-18

Summary

Websense, when configured to permit access to the dynamic content category, allows local users to bypass intended blocking of the Uncategorized category by appending a "/?" sequence to a URL.

Vulnerable Configurations

Part	Description	Count
Application	Websense Websense Websense *	1

References

http://www.osvdb.org/25211
http://www.securityfocus.com/archive/1/431600/100/0/threaded
http://www.securityfocus.com/archive/1/431685/100/0/threaded
https://exchange.xforce.ibmcloud.com/vulnerabilities/25980