The Filtering Service in Websense Enterprise 5.2 up to and including 6.3 does not consider the IP address during URL categorization, which makes it easier for remote malicious users to bypass filtering via an HTTP request, as demonstrated by a request to a compromised server associated with a specific IP address.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
websense enterprise 5.5 |
||
websense enterprise 6.1 |
||
websense enterprise 6.2 |
||
websense enterprise 6.3 |
||
websense enterprise 5.2 |