Main Menu

Login



Support Virus.Org

Help support Virus.Org by donating.
Donating allows us to keep this site free and pay the running costs of all our services.
NetGear URL Filtering Bypass Vulnerability PDF Print E-mail
Monday, 17 January 2005 11:23
If youre using the URL filtering functionality on the Netgear FVS318 to protect your family or business from the filth of the Internet be afraid, be very afraid! This was one of two vulnerabilities disclosed today to the full disclosure mailing list [here]. By using the simple URL encoding mechanism (which encodes characters as their hexadecimal value) you can bypass what would appear to be a very crap bit of filtering technology.

A simple example would be say if you block *.jpg’s from being downloaded (we all know the only use for .jpg’s is pr0n don’t we), to bypass the filter all we would have to do is request picture.j%70g (picture.jpg).

Add this page to your favorite Social Bookmarking websites
Digg! Reddit! Del.icio.us! Google! Live! Facebook! Technorati! StumbleUpon! Yahoo!
Last Updated ( Thursday, 14 September 2006 21:26 )