F5 FirePass Dotless IP Address URL Restriction Bypass

2007-01-05T10:18:36
ID OSVDB:32734
Type osvdb
Reporter Michael Ligh(), Greg Sinclair(gssincla@nnlsoftware.com)
Modified 2007-01-05T10:18:36

Description

Vulnerability Description

FirePass contains a flaw that may allow a malicious user to bypass web filter restrictions. The issue is triggered when a user submits an IP address in a URL as a dotless, decimal value, which may allow to bypass any 'deny' statements that may have otherwise affected the IP address, resulting in a loss of integrity.

Solution Description

User of series 5 of the software should upgrade to version 5.5.2. There is also a feature release for verson 6 which addresses this issue. Users of 5.5.1 should contact the vendor for a hotfix. These measure have been reported to address this vulnerability.

Short Description

FirePass contains a flaw that may allow a malicious user to bypass web filter restrictions. The issue is triggered when a user submits an IP address in a URL as a dotless, decimal value, which may allow to bypass any 'deny' statements that may have otherwise affected the IP address, resulting in a loss of integrity.

References:

Vendor Specific News/Changelog Entry: https://tech.f5.com/home/solutions/sol6922.html Secunia Advisory ID:23640 Other Advisory URL: http://www.mnin.org/advisories/2007_firepass.pdf Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2007-01/0141.html CVE-2007-0188 Bugtraq ID: 21957