CVE-2011-5102

2012-08-2310:32:14

CWE-264

[email protected]

web.nvd.nist.gov

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.3

Confidence

Low

EPSS

0.01

Percentile

83.5%

JSON

The Investigative Reports web interface in the TRITON management console in Websense Web Security 7.1 before Hotfix 109, 7.1.1 before Hotfix 06, 7.5 before Hotfix 78, 7.5.1 before Hotfix 12, 7.6 before Hotfix 24, and 7.6.2 before Hotfix 12; Web Filter; Web Security Gateway; and Web Security Gateway Anywhere allows remote attackers to execute commands via unspecified vectors.

Affected configurations

Nvd

Node

websensewebsense_web_filter

websensewebsense_web_securityMatch7.1

websensewebsense_web_securityMatch7.1.1

websensewebsense_web_securityMatch7.5

websensewebsense_web_securityMatch7.5.1

websensewebsense_web_securityMatch7.6

websensewebsense_web_securityMatch7.6.2

websensewebsense_web_security_gateway

websensewebsense_web_security_gateway_anywhere

VendorProductVersionCPE
websensewebsense_web_filter*cpe:2.3:a:websense:websense_web_filter:*:*:*:*:*:*:*:*
websensewebsense_web_security7.1cpe:2.3:a:websense:websense_web_security:7.1:*:*:*:*:*:*:*
websensewebsense_web_security7.1.1cpe:2.3:a:websense:websense_web_security:7.1.1:*:*:*:*:*:*:*
websensewebsense_web_security7.5cpe:2.3:a:websense:websense_web_security:7.5:*:*:*:*:*:*:*
websensewebsense_web_security7.5.1cpe:2.3:a:websense:websense_web_security:7.5.1:*:*:*:*:*:*:*
websensewebsense_web_security7.6cpe:2.3:a:websense:websense_web_security:7.6:*:*:*:*:*:*:*
websensewebsense_web_security7.6.2cpe:2.3:a:websense:websense_web_security:7.6.2:*:*:*:*:*:*:*
websensewebsense_web_security_gateway*cpe:2.3:a:websense:websense_web_security_gateway:*:*:*:*:*:*:*:*
websensewebsense_web_security_gateway_anywhere*cpe:2.3:a:websense:websense_web_security_gateway_anywhere:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
websense	websense_web_filter	*	cpe:2.3:a:websense:websense_web_filter::::::::
websense	websense_web_security	7.1	cpe:2.3:a:websense:websense_web_security:7.1:::::::*
websense	websense_web_security	7.1.1	cpe:2.3:a:websense:websense_web_security:7.1.1:::::::*
websense	websense_web_security	7.5	cpe:2.3:a:websense:websense_web_security:7.5:::::::*
websense	websense_web_security	7.5.1	cpe:2.3:a:websense:websense_web_security:7.5.1:::::::*
websense	websense_web_security	7.6	cpe:2.3:a:websense:websense_web_security:7.6:::::::*
websense	websense_web_security	7.6.2	cpe:2.3:a:websense:websense_web_security:7.6.2:::::::*
websense	websense_web_security_gateway	*	cpe:2.3:a:websense:websense_web_security_gateway::::::::
websense	websense_web_security_gateway_anywhere	*	cpe:2.3:a:websense:websense_web_security_gateway_anywhere::::::::

References

www.websense.com/support/article/kbarticle/v7-1-1-About-Hotfix-06-for-Web-Security-Web-Filter-and-Web-Security-Gateway

www.websense.com/support/article/kbarticle/v7-1-About-Hotfix-109-for-Websense-Web-Security-Web-Filter-and-Web-Security-Gateway

www.websense.com/support/article/kbarticle/v7-5-1-About-Hotfix-12-for-Websense-Web-Security-Web-Filter-Web-Security-Gateway-and-Web-Security-Gateway-Anywhere

www.websense.com/support/article/kbarticle/v7-5-About-Hotfix-78-for-Websense-Web-Security-Web-Filter-Web-Security-Gateway-and-Web-Security-Gateway-Anywhere

www.websense.com/support/article/kbarticle/v7-6-2-About-Hotfix-12-for-Websense-Web-Security-Web-Filter-Web-Security-Gateway-and-Web-Security-Gateway-Anywhere

www.websense.com/support/article/kbarticle/v7-6-2-About-Hotfix-12-for-Websense-Web-Security-Websense-Web-Filter-and-Web-Security-Gateway

www.websense.com/support/article/kbarticle/v7-6-About-Hotfix-24-for-Websense-Web-Security-Web-Filter-Web-Security-Gateway-and-Web-Security-Gateway-Anywhere

www.websense.com/support/article/kbarticle/v7-6-About-Hotfix-24-for-Websense-Web-Security-Websense-Web-Filter-and-Web-Security-Gateway