12 matches found
EUVD-2005-1996
Malware in sbrugna...
Finjan SurfinGate 6.0/7.0 FHTTP Restart Command Execution Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/9478/info Finjan SurfinGate is prone to a vulnerability that may permit remote attackers to execute certain management commands using the FHTTP protocol through the management control port 3141/TCP. It has been reported...
CVE-2005-1994
Finjan SurfinGate 7.0SP2 and SP3 allows remote attackers to download blocked files via hex-encoded characters in a filename, as demonstrated using "%2e"...
Finjan SurfinGate content filtering protection bypass
It's possible to bypass URL filtering by using escape sequences...
URL-Encoding Problem in Finjan SurfinGate
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUMMARY - ------- The Finjan SurfinGate use web content filtering and internet access management for protecting the network. A vulnerability in the product allows you to bypass the access management. You can download files which are normally blocked...
CVE-2005-1994
Finjan SurfinGate 7.0SP2 and SP3 allows remote attackers to download blocked files via hex-encoded characters in a filename, as demonstrated using "%2e"...
CVE-2004-2107
Finjan SurfinGate 6.0 and 7.0, when running in proxy mode, does not authenticate FHTTP commands on TCP port 3141, which allows remote attackers to use the finjan-parameter-type header to 1 restart the service, 2 use the getlastmsg command to view log information, or 3 use the online command to...
CVE-2004-2107
Finjan SurfinGate 6.0 and 7.0, when running in proxy mode, does not authenticate FHTTP commands on TCP port 3141, which allows remote attackers to use the finjan-parameter-type header to 1 restart the service, 2 use the getlastmsg command to view log information, or 3 use the online command to...
Finjan SurfinGate Proxy FHTTP Command Admin Functions Authentication Bypass
The remote host is running a Finjan SurfinGate, a web proxy. It is possible to bypass admin authentication by using the proxy to connect to itself. A remote attacker could exploit this to view log information, force a policy update, or restart the service. C Tenable Network Security, Inc...
Finjan SurfinGate unauthorized access
By using proxy server it's possible to obtain access to administration...
Finjan SurfinGate 6.0/7.0 - FHTTP Restart Command Execution
source: https://www.securityfocus.com/bid/9478/info Finjan SurfinGate is prone to a vulnerability that may permit remote attackers to execute certain management commands using the FHTTP protocol through the management control port 3141/TCP. It has been reported that commands could be issued to...
SurfinGate.txt
Hi! I've found two possibilities to bypass the Finjan SurfinGate URL filter - Tested with Finjan SurfinGate 6.0x on Windows NT 4.0 and 2000. 1. IP Tunnel Normally humans use domain- and hostnames instead of IP addresses. Most users will add entries like "www.computec.ch" in the URL list of Finjan...