CVE-2006-0515

Description

Cisco PIX/ASA 7.1.x before 7.1(2) and 7.0.x before 7.0(5), PIX 6.3.x before 6.3.5(112), and FWSM 2.3.x before 2.3(4) and 3.x before 3.1(7), when used with Websense/N2H2, allows remote attackers to bypass HTTP access restrictions by splitting the GET method of an HTTP request into multiple packets, which prevents the request from being sent to Websense for inspection, aka bugs CSCsc67612, CSCsc68472, and CSCsd81734.

Affected products

• Cisco / adaptive_security_appliance_software7.0(4) – 7.0(4)
• Cisco / adaptive_security_appliance_software7.0.1.4 – 7.0.1.4
• Cisco / adaptive_security_appliance_software7.0.4.3 – 7.0.4.3
• Cisco / adaptive_security_appliance_software7.0 – 7.0
• Cisco / firewall_services_module2.3 – 2.3
• Cisco / firewall_services_module3.1 – 3.1
• Cisco / pix_firewall6.2.3_(110) – 6.2.3_(110)
• Cisco / pix_firewall6.3.3_(133) – 6.3.3_(133)
• Cisco / pix_firewall6.2.2.111 – 6.2.2.111
• Cisco / pix_firewall_software4.2(2) – 4.2(2)
• Cisco / pix_firewall_software4.2(5) – 4.2(5)
• Cisco / pix_firewall_software4.3 – 4.3
• Cisco / pix_firewall_software4.4 – 4.4
• Cisco / pix_firewall_software4.4(4) – 4.4(4)
• Cisco / pix_firewall_software4.4(7.202) – 4.4(7.202)
• Cisco / pix_firewall_software4.4(8) – 4.4(8)
• Cisco / pix_firewall_software5.0 – 5.0
• Cisco / pix_firewall_software5.1 – 5.1
• Cisco / pix_firewall_software5.1(4) – 5.1(4)
• Cisco / pix_firewall_software5.1(4.206) – 5.1(4.206)
• Cisco / pix_firewall_software5.2 – 5.2
• Cisco / pix_firewall_software5.2(1) – 5.2(1)
• Cisco / pix_firewall_software5.2(2) – 5.2(2)
• Cisco / pix_firewall_software5.2(3.210) – 5.2(3.210)
• Cisco / pix_firewall_software5.2(5) – 5.2(5)
• Cisco / pix_firewall_software5.2(6) – 5.2(6)
• Cisco / pix_firewall_software5.2(7) – 5.2(7)
• Cisco / pix_firewall_software5.2(9) – 5.2(9)
• Cisco / pix_firewall_software5.3 – 5.3
• Cisco / pix_firewall_software5.3(1) – 5.3(1)
• Cisco / pix_firewall_software5.3(1.200) – 5.3(1.200)
• Cisco / pix_firewall_software5.3(2) – 5.3(2)
• Cisco / pix_firewall_software5.3(3) – 5.3(3)
• Cisco / pix_firewall_software6.0 – 6.0
• Cisco / pix_firewall_software6.0(1) – 6.0(1)
• Cisco / pix_firewall_software6.0(2) – 6.0(2)
• Cisco / pix_firewall_software6.0(3) – 6.0(3)
• Cisco / pix_firewall_software6.0(4) – 6.0(4)
• Cisco / pix_firewall_software6.0(4.101) – 6.0(4.101)
• Cisco / pix_firewall_software6.1 – 6.1
• Cisco / pix_firewall_software6.1(1) – 6.1(1)
• Cisco / pix_firewall_software6.1(2) – 6.1(2)
• Cisco / pix_firewall_software6.1(3) – 6.1(3)
• Cisco / pix_firewall_software6.1(4) – 6.1(4)
• Cisco / pix_firewall_software6.1(5) – 6.1(5)
• Cisco / pix_firewall_software6.1.5(104) – 6.1.5(104)
• Cisco / pix_firewall_software6.2 – 6.2
• Cisco / pix_firewall_software6.2(1) – 6.2(1)
• Cisco / pix_firewall_software6.2(2) – 6.2(2)
• Cisco / pix_firewall_software6.2(3) – 6.2(3)
• Cisco / pix_firewall_software6.2(3.100) – 6.2(3.100)
• Cisco / pix_firewall_software6.3 – 6.3
• Cisco / pix_firewall_software6.3(1) – 6.3(1)
• Cisco / pix_firewall_software6.3(2) – 6.3(2)
• Cisco / pix_firewall_software6.3(3) – 6.3(3)
• Cisco / pix_firewall_software6.3(3.102) – 6.3(3.102)
• Cisco / pix_firewall_software6.3(3.109) – 6.3(3.109)
• Cisco / pix_firewall_software6.3(5) – 6.3(5)
• Cisco / pix_firewall_software2.7 – 2.7
• Cisco / pix_firewall_software3.0 – 3.0
• Cisco / pix_firewall_software3.1 – 3.1
• Cisco / pix_firewall_software4.0 – 4.0
• Cisco / pix_firewall_software4.1(6) – 4.1(6)
• Cisco / pix_firewall_software4.1(6b) – 4.1(6b)
• Cisco / pix_firewall_software4.2 – 4.2
• Cisco / pix_firewall_software4.2(1) – 4.2(1)

References

• MAILING_LISThttp://lists.grok.org.uk/pipermail/full-disclosure/2006-May/045899.html
• MISChttp://www.osvdb.org/25453
• VENDOR_ADVISORYhttp://www.vsecurity.com/bulletins/advisories/2006/cisco-websense-bypass.txt
• VENDOR_ADVISORYhttp://secunia.com/advisories/20044
• MISChttp://www.securityfocus.com/bid/17883
• VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2006/1738
• VENDOR_ADVISORYhttp://www.cisco.com/en/US/products/sw/netmgtsw/ps2032/tsd_products_security_response09186a00806824ec.html
• MISChttp://securitytracker.com/id?1016040
• MISChttp://securitytracker.com/id?1016039
• MISChttp://www.securityfocus.com/archive/1/433270/100/0/threaded
• MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/26308