Fragmented Packets Bypass SurfControl SuperScout Filtering
CVE-2001-1465 · MEDIUM Severity
AV:L/AC:L/AU:N/C:P/I:P/A:P
SurfControl SuperScout only filters packets containing both an HTTP GET request and a Host header, which allows local users to bypass filtering by fragmenting packets so that no packet contains both data elements.
Learn more about our User Device Pen Test.