CVE-2010-1329

Imperva SecureSphere Web Application Firewall and Database Firewall 5.0.0.5082 through 7.0.0.7078 allow remote attackers to bypass intrusion-prevention functionality via a request that has an appended long string containing an unspecified manipulation.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:imperva:securesphere_web_application_firewall:5.0.0.5082:*:*:*:*:*:*:*
cpe:2.3:a:imperva:securesphere_web_application_firewall:6.0.5.6230:*:*:*:*:*:*:*
cpe:2.3:a:imperva:securesphere_web_application_firewall:6.0.5.6238:*:*:*:*:*:*:*
cpe:2.3:a:imperva:securesphere_web_application_firewall:6.0.6.6274:*:*:*:*:*:*:*
cpe:2.3:a:imperva:securesphere_web_application_firewall:6.0.6.6302:*:*:*:*:*:*:*
cpe:2.3:a:imperva:securesphere_web_application_firewall:6.2.0.6442:*:*:*:*:*:*:*
cpe:2.3:a:imperva:securesphere_web_application_firewall:6.2.0.6463:*:*:*:*:*:*:*
cpe:2.3:a:imperva:securesphere_web_application_firewall:7.0.0.7061:*:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:a:imperva:securesphere_database_firewall:5.0.0.5082:*:*:*:*:*:*:*
cpe:2.3:a:imperva:securesphere_database_firewall:6.0.5.6230:*:*:*:*:*:*:*
cpe:2.3:a:imperva:securesphere_database_firewall:6.0.5.6238:*:*:*:*:*:*:*
cpe:2.3:a:imperva:securesphere_database_firewall:6.0.6.6274:*:*:*:*:*:*:*
cpe:2.3:a:imperva:securesphere_database_firewall:6.0.6.6302:*:*:*:*:*:*:*
cpe:2.3:a:imperva:securesphere_database_firewall:6.2.0.6442:*:*:*:*:*:*:*
cpe:2.3:a:imperva:securesphere_database_firewall:6.2.0.6463:*:*:*:*:*:*:*
cpe:2.3:a:imperva:securesphere_database_firewall:7.0.0.7061:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
OR cpe:2.3:a:imperva:securesphere_database_firewall:6.0.4.6128:*:*:*:*:*:*:*
cpe:2.3:a:imperva:securesphere_web_application_firewall:6.0.4.6128:*:*:*:*:*:*:*
cpe:2.3:o:crossbeamsystems:xos:8.0\/5:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
OR cpe:2.3:a:imperva:securesphere_database_firewall:7.0.0.7078:*:*:*:*:*:*:*
cpe:2.3:a:imperva:securesphere_web_application_firewall:7.0.0.7078:*:*:*:*:*:*:*
cpe:2.3:o:crossbeamsystems:xos:8.5.3:*:*:*:*:*:*:*

History

21 Nov 2024, 01:14

Type Values Removed Values Added
References () http://www.clearskies.net/documents/css-advisory-css1001-imperva.php - () http://www.clearskies.net/documents/css-advisory-css1001-imperva.php -
References () http://www.imperva.com/resources/adc/adc_advisories_response_clearskies.html - Patch, Vendor Advisory () http://www.imperva.com/resources/adc/adc_advisories_response_clearskies.html - Patch, Vendor Advisory
References () http://www.securityfocus.com/archive/1/510709/100/0/threaded - () http://www.securityfocus.com/archive/1/510709/100/0/threaded -
References () http://www.securityfocus.com/bid/39472 - () http://www.securityfocus.com/bid/39472 -

Information

Published : 2010-04-15 17:30

Updated : 2024-11-21 01:14


NVD link : CVE-2010-1329

Mitre link : CVE-2010-1329

CVE.ORG link : CVE-2010-1329


JSON object : View

Products Affected

crossbeamsystems

  • xos

imperva

  • securesphere_database_firewall
  • securesphere_web_application_firewall