WCG URL used for F5 health monitoring provides sensitive version information
This system information can be used by an hacker to monitor the impact of a DOS attack.RFE: limit access to this interfaceV10K G2 appliance, running 7.7.3Internal reference: L03< picture available>
View ArticleNO httponly flag set on the WS_SESSION cookie upon triton login (version...
Logging into the Triton management interface ( W2k8-R2, with websense: 7.7.3) sets a WS_SESSION cookie.This cookie is not protected by a httponly flag thereby raising the impact of a possible XSS...
View Articlesecurit flaw: passwords are readable in HTM presentation of the source code...
From the gui one can read the passwords, this presents a leakage of very sensitive informationthe picture below shows the credentials used for downloading the websense database.RFE: passwords should...
View Articlethe WCG 7.7.3. mgmt interface is not protected by a CSRF token
Interface is not protected by a CSRF token, making it vulnerable for malicious actions such as rebooting the appliances via this interface. this attack could be setup up by a concealed iframe pointing...
View ArticleInvestigative report on keyword?
How would i create a custom investigative report which searches "full urls" for a string? It would be for a specified date range and return user, source, and destination.
View Articlenot able to download software/files from Microsoft sites
HiWe have Cloud web security & users are not able to download software/files from Microsoft sites. can someone help me out.
View ArticleWCG supports weak SSL cipher lengths
Hacking audit against a WCG V10KG2 running 7.7.3 revealed weak SSL cipher support ( 56 bit)Weak SSL ciphers are easily decrypted; and are therefore considered to be a security misconfiguration.RFE:...
View Articleunsafe redirect in the authentication handler of the proxy appliance
the proxy uses an unsafe redirect. One could use a specially crafted URL, encoded base64, which points to an internal host controlled by an hacker. the hacker could sent the following link via email to...
View Articleapache daemon vulnerable in triton 7.7.3
The Triton management interface ( 7.7.3 on windows 2008 R2) runs a vulnerable apache daemon, in which for example the HTTPonly cookie can be read by javascript by an error in the "400 BAD REQUEST"...
View ArticleAllow modification of prompt for IWA
default prompt for Integrated Windows Authentication is fqdn of proxy\username and this causes confusion for guest users using non-domain computers because this default prompt will not work even if the...
View ArticleCustom block pages problem
Tell me, is it possible to have new custom html pages made up to show:1. A red-background coloured blocked page for genuinely blocked pages, with no further "Continue button" clicking2. A separate...
View ArticleWebsense subscriptions.
Maybe you have been asked this question million times but I tried to search for the past one hour I didn't find a solution. I have connected my web security 7.7.3 through Juniper firewall SSG 140 now...
View ArticleEndpoint Service "Websense SaaS Service" does not start
Hi,on 4 pcs (WIN/ 64bit) I have had the problem, that after some days the enpoint Service "Websense SaaS Service" was not starting anymore. The only resolution was to uninstall and install the Endpoint...
View ArticlePolicy Server Service wont start
Hi We are unable to start the policy server service. This is the error in the log file:2013-07-12 15:43:34 WARN [8016, 10720] wbsn.PolicyBroker.AsyncWorkspaceCreatorImpl.Job - Failed to create a new...
View ArticleCategorization of websites differ in V6.3 & V7
http://netcologne.dll.sourceforge.net/project/soapui/soapui/4.5.3/soapUI-x32-4.5.2.exeAbove website is categorized as Information Technology in V7 and Malicious Website in V6.3. Is there a risk in...
View Article"Exact Match" Fingerprint for Database Fingerprinting
Hello Guys,When we work with File Fingerprinting we have the option to configure a "Exact Match" or "Content Similarity" fingerprinting task. We don´t have this option for Database Fingerprinting, and...
View Articleaol search ad results are blocked
Hi,Somehow aol search advertisement results are being blocked.any ideas?
View ArticleWebsense Web Endpoint compatibility with Windows 8
HiI recently installed the web endpoint agent v7.7.1631 in my laptop with windows 8 and I noticed some strange behavior: With Web Endpoint Installed AND Inside Corporate NetworkIE > Doesnt have...
View ArticleApproved organisational browsers for Internet access
I would like to see Websense be able to control which browsers type and versions are allowed to access the Internet. Browsers not meeting an approved list receive a block page. We are faced with...
View Article7.7.3 upgrades
Just wanted to know how your experiences of upgrading to 7.7.3 have been. We are looking at going from 7.7.0 to 7.7.3 and would just like to know if anyone has experienced any pain. Obviously web/mail...
View Article