Vulnerabilities > CVE-2007-6511 - Security Bypass vulnerability in Websense Enterpise 6.3.1
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
Websense Enterprise 6.3.1 allows remote attackers to bypass content filtering by visiting http URLs with a (1) RealPlayer G2, (2) MSMSGS, or (3) StoneHttpAgent User-Agent header, which results in a Non-HTTP categorization.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
References
- http://lists.grok.org.uk/pipermail/full-disclosure/2007-December/059092.html
- http://mrhinkydink.blogspot.com/2007/12/websense-policy-filtering-bypass.html
- http://secunia.com/advisories/28026
- http://www.securityfocus.com/archive/1/485032/100/0/threaded
- http://www.securityfocus.com/archive/1/485033/100/0/threaded
- http://www.securitytracker.com/id?1019094
- http://www.vupen.com/english/advisories/2007/4210
- http://www.websense.com/SupportPortal/SupportKbs/976.aspx
- https://exchange.xforce.ibmcloud.com/vulnerabilities/39023