CVE-2001-1465

Published: Feb 26, 2002Modified: Apr 16, 2026

4.6

Vector

AV:L/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 3.9 / Impact: 6.4

Source: NVD

Description

SurfControl SuperScout only filters packets containing both an HTTP GET request and a Host header, which allows local users to bypass filtering by fragmenting packets so that no packet contains both data elements.

Affected (1)

Products: Surfcontrol: Superscout Web Filter

Surfcontrol

1 product

Superscout Web Filter

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Surfcontrol Superscout Web Filter	All versions

References (4)

http://securitytracker.com/id?1001801

Source: cve@mitre.org

http://www.kb.cert.org/vuls/id/139315

Source: cve@mitre.org

US Government Resource

http://securitytracker.com/id?1001801

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.kb.cert.org/vuls/id/139315

Source: af854a3a-2127-422b-91ae-364da2661108

US Government Resource

Timeline

No history available yet.