Vulnerability: Bypassing URL Restrictions in SEIL Routers with Enabled http-proxy and application-gateway Features

Vulnerability: Bypassing URL Restrictions in SEIL Routers with Enabled http-proxy and application-gateway Features

CVE-2012-2632 · LOW Severity

AV:N/AC:H/AU:N/C:N/I:P/A:N

SEIL routers with firmware SEIL/x86 1.00 through 2.35, SEIL/X1 2.30 through 3.75, SEIL/X2 2.30 through 3.75, and SEIL/B1 2.30 through 3.75, when the http-proxy and application-gateway features are enabled, do not properly handle the CONNECT command, which allows remote attackers to bypass intended URL restrictions via a TCP session.

Learn more about our Web Application Penetration Testing UK.