4 matches found
CVE-2001-1152
Baltimore Technologies WEBsweeper 4.02: A URL blacklist management vulnerability allows remote attackers to bypass restrictions and reach unauthorized web servers by tampering with the requested URL. Exploitation vectors include (1) //, (2) /SUBDIR/.. to access parent directory, (3) /./, or (4) U...
CVE-2001-1152
Baltimore Technologies WEBsweeper 4.02, when used to manage URL blacklists, allows remote attackers to bypass blacklist restrictions and connect to unauthorized web servers by modifying the requested URL, including 1 a // double slash, 2 a /SUBDIR/.. where the desired file is in the parentdir, 3 ...
Various problems in Baltimore WebSweeper URL filtering
Tuesday 4 September 2001 Various problems in Baltimore WebSweeper URL filtering ====================================================== Product Background ------------------ WEBSweeper is Baltimore Technologies' Web Content Security solution. It enables customers to implement Content Security...
CVE-2001-1152
Baltimore Technologies WEBsweeper 4.02, when used to manage URL blacklists, allows remote attackers to bypass blacklist restrictions and connect to unauthorized web servers by modifying the requested URL, including 1 a // double slash, 2 a /SUBDIR/.. where the desired file is in the parentdir, 3 ...