header-logo
Suggest Exploit
vendor:
Superstack 3 Firewall
by:
SecurityFocus
7.5
CVSS
HIGH
HTTP Content Filter Fragmentation Vulnerability
20
CWE
Product Name: Superstack 3 Firewall
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: YES
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2002

3Com Superstack 3 Firewall HTTP Content Filter Fragmentation Vulnerability

A vulnerability has been reported in the 3Com Superstack 3 Firewall. HTTP content filters put in place by the device fail to assemble fragmented data, potentially allowing an attacker to access unauthorized web sites. An attacker could exploit this vulnerability by connecting a web server using a protocol in which data is fragmented when transferred.

Mitigation:

It is recommended that users of the 3Com Superstack 3 Firewall upgrade to the latest version of the software.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/7021/info

A vulnerability has been reported in the 3Com Superstack 3 Firewall. HTTP content filters put in place by the device fail to assemble fragmented data, potentially allowing an attacker to access unauthorized web sites.

An attacker could exploit this vulnerability by connecting a web server using a protocol in which data is fragmented when transferred.

Although unconfirmed, it is possible that this issue also affects other HTTP content filters. 

telnet www.blockedsite.com 80

GET / HTTP/1.1
Host: www.blockedsite.com

Navigation

Suggest Exploit

Services By CQR