Palo Alto Networks PAN-OS HTTP Request Smuggling Vulnerability Fixed by 7.1.1


Description   (:A vulnerability has been identified in Palo Alto Networks PAN-OS.:A remote attacker could exploit it by crafting an HTTP header in order to evade URL filtering.)
     
Vulnerable Products   Vulnerable OS:
PAN-OS (Palo Alto Networks) - 5.0.x, 6.1.0, 6.1.x, 7.0.x, 7.1.0
     
Solution   Version 7.1.1 of Palo Alto Networks PAN-OS fixes this vulnerability.
     
CVE  
     
References   - PAN-SA-2016-0006 : HTTP Header Evasion
https://securityadvisories.paloaltonetworks.com/Home/Detail/39
     
Vulnerability Manager Detection   No
     
IPS Protection  
ASQ Engine alarm Available Since
HTTP Request Smuggling : HTTP command found in header
3.2.0
HTTP Request Smuggling : Content-Length and Transfer-Encoding: chunked fields in header
3.2.0
HTTP Request Smuggling : suspicious syntax using HTTP keyword
3.2.0
HTTP Request Smuggling : multiple Content-Length fields
3.2.0
     


 
 
 
 
 Risk level 
Moderate 

 Vulnerability First Public Report Date 
2016-04-18 

 Target Type 
Server 

 Possible exploit 
Remote