Vulnerability Description
Imperva SecureSphere Web Application Firewall and Database Firewall 5.0.0.5082 through 7.0.0.7078 allow remote attackers to bypass intrusion-prevention functionality via a request that has an appended long string containing an unspecified manipulation.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Imperva | Securesphere Web Application Firewall | 5.0.0.5082 |
| Imperva | Securesphere Database Firewall | 5.0.0.5082 |
| Crossbeamsystems | Xos | 8.0\/5 |
References
- http://www.clearskies.net/documents/css-advisory-css1001-imperva.php
- http://www.imperva.com/resources/adc/adc_advisories_response_clearskies.htmlPatchVendor Advisory
- http://www.securityfocus.com/archive/1/510709/100/0/threaded
- http://www.securityfocus.com/bid/39472
- http://www.clearskies.net/documents/css-advisory-css1001-imperva.php
- http://www.imperva.com/resources/adc/adc_advisories_response_clearskies.htmlPatchVendor Advisory
- http://www.securityfocus.com/archive/1/510709/100/0/threaded
- http://www.securityfocus.com/bid/39472
FAQ
What is CVE-2010-1329?
CVE-2010-1329 is a vulnerability with a CVSS score of 7.8 (HIGH). Imperva SecureSphere Web Application Firewall and Database Firewall 5.0.0.5082 through 7.0.0.7078 allow remote attackers to bypass intrusion-prevention functionality via a request that has an appended...
How severe is CVE-2010-1329?
CVE-2010-1329 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2010-1329?
Check the references section above for vendor advisories and patch information. Affected products include: Imperva Securesphere Web Application Firewall, Imperva Securesphere Database Firewall, Crossbeamsystems Xos.