NetGap Escaped And Encoded URL Filtering Bypass Vulneribility

NetGAP is an internet security appliance distributed by Spearhead Security. The device is designed to provide a physical buffer between private and public networks, while allowing logical access through content filtering and access control.

A problem with the appliance makes it possible to bypass the URL filtering function. By encoding requests with escaped (%) URL requests, the requests are passed along by the appliance unchecked.

This makes it possible for users on either side of the appliance to pass escaped URLs, and potentially gain access to restricted resources.


Privacy Statement
Copyright 2010, SecurityFocus